Hi @Carlos Caras It seems you’re encountering a 403 Forbidden error after setting up Azure Front Door and restricting public traffic to your app service.
Network Security Restrictions: You mentioned that you disabled public traffic to your app and allowed only traffic from the Front Door. Ensure that your web app’s Network Security Restrictions are correctly configured. If you have IP restrictions, make sure the Front Door’s IP addresses are whitelisted.
Order of Rules: If you have multiple rules in your Front Door configuration, the order matters. Path-based rules should be below basic rules. Verify the rule order to ensure proper handling of requests. Review Azure Front Door routing rules.
SSL Profile: If you’re using an SSL profile on the listener, consider using the “Use well-known CA certificate” option under HTTP settings instead. This can resolve the 403 error.
Web Application Firewall (WAF): Check if WAF is enabled. If so, review the WAF logs to identify any rules blocking requests. You can set WAF to Detection mode initially to diagnose issues.
Custom Response: Configure a custom response for Azure Web Application Firewall to provide meaningful feedback when requests are blocked. Configure custom WAF responses.
If this answer solves your issue, please vote for it so other community members know that this is a quality answer.