Configure Routing Tables
a. Create a new Route Table in the same resource group as your Virtual Network or use an existing one.
b. Add a new route, specifying the following:
- Address Prefix: The address range for the Azure APIM control plane IP addresses.
- Next Hop Type: Select 'Virtual Appliance'.
- Next Hop Address: Enter the private IP address of your Azure Firewall.
c. Associate the Route Table with the subnet(s) that contain your APIM instance.
Check NSG Rules
Verify APIM and Subnet Configurations
a. Ensure that your APIM instance is deployed within the correct subnet in your virtual network.
b. Configure the necessary service endpoints on the subnet that contains your APIM instance, such as 'Microsoft.ApiManagement' and 'Microsoft.Web'.
c. Make sure your APIM instance is properly configured to use the custom domain and SSL certificate required for internal mode, and that the 'Virtual network type' is set to 'Internal'.