Hi @Thorbjørn Nielsen I went through the same exercise, actually using Service Tags - List (REST API) checking my app service's outbound IP under the AppService tag and came up short. I did however find its network id under AzureCloud (52.169.0.0/16). If you're wanting check the most recent list of outbound IPs, I would reference those under Azure Cloud, per Azure Service tags overview.
However, if you're checking these IPs to do some whitelisting, it's not advised to use that service tag as noted:
For example, the AzureCloud tag may be used to allow inbound traffic. In most scenarios, we don't recommend allowing traffic from all Azure IPs since IPs used by other Azure customers are included as part of the service tag.
Therefore, your best option is to either...
- Use VNet integration with either a load balancer (Gateway, FrontDoor, Traffic Manager), Site-to-Site VPN or ExpressRoute along with a Network Security Group (NSG).
- Pull your outbound IPs from the App Service properties. Note though this will change as scale.
...assuming that's your end goal.