Share via

Connect two App Services under the P1V2 SKU Tier making a Frontend Public Access and Backend Private Only

xshiiii 1 Reputation point
2022-12-02T13:32:25.19+00:00

So basically I have these requirements using the P1V2 SKU Tier on App Service Plan I need to network the following Web Apps.

  1. App Service (Frontend) should be accessible via the internet.
  2. App Service (API Backend) should only be accessible by the App Service (Frontend)

What I have successfully done is that the App Service (Frontend) is already accessible on the internet but it cannot access the App Service (API Backend). The networking I've done is on the App Service (Frontend) I set up an Outbound Traffic VNet Integration using subnetA and on the App Service (API Backend) I set up the Inbound Traffic Private endpoint using subnetB both of the subnetA and subnetB are using the same VNET.

I am fairly new with Azure and I don't have any idea why the Frontend could reach the Backend when in fact they are in the same VNET.

Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
8,910 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Ryan Hill 30,276 Reputation points Microsoft Employee Moderator
    2022-12-03T08:28:08.263+00:00

    By assigning a private endpoint the API, you need to verify that correct A and CNAME DNS records have been configured correctly in Azure DNS. From your front-end app service console, use these troubleshooting steps to verify your private endpoint configuration. Also check your access restriction rules on your app services to make sure that traffic isn't inadvertently being blocked and that your backend API allows traffic from the VNET. Leverage service tags to make the setup easier.

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.