![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(57.599999999999994, 70%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAU%3C/text%3E%3C/svg%3E)
Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
1,079 questions
Welcome to the Microsoft Q&A Platform. Thank you for reaching out & I hope you are doing well.
I understand that you would like to know the difference between Azure Private Link and Private IP Frontend.
As per your observation, yes, the main difference is:
- Private IP is accessible from all resources that are directly connected to the VNET
- In Private Link, there is no such requirement that the VNETs should be peered/connected.
- And these VNETs can be in a different tenant or region altogether
- The MS Backbone will take care of the routing
See :
So, in your case,
Unless and until you are exposing your service (App Gw) to external clients, you can continue to leverage Private IP frontend.
Kindly let us know if this helps or you need further assistance on this issue.
Thanks,
Kapil
Please don’t forget to close the thread by clicking "Accept the answer" wherever the information provided helps you, as this can be beneficial to other community members.