Share via

Application Gateway for Containers, how to secure the public IP on the frontend?

bryan oakley-wiggins 0 Reputation points
2024-06-21T07:19:31.96+00:00

Question: Securing Public IP frontend for Application Gateway for Containers

I am considering using Azure Application Gateway for Containers with my internal private DNS and a private AKS cluster. I would appreciate some guidance on how best to secure the public IP for the frontend, whilst there is no immediate support for private IP on the frontend. Specifically, I want to ensure that the public IP is protected while integrating with my internal private DNS and private AKS cluster.

What are the best practices and steps to achieve this setup, with Application Gateway for Containers?

Thank you.

Azure DNS
Azure DNS
An Azure service that enables hosting Domain Name System (DNS) domains in Azure.
623 questions
Azure Application Gateway
Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
996 questions
Azure Kubernetes Service (AKS)
Azure Kubernetes Service (AKS)
An Azure service that provides serverless Kubernetes, an integrated continuous integration and continuous delivery experience, and enterprise-grade security and governance.
1,945 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Deepanshukatara-6769 6,475 Reputation points
    2024-06-21T08:09:45.4833333+00:00

    Hi, Welcome to MS Q&A

    To secure the public IP for the frontend of Azure Application Gateway for Containers, it is recommended to use Azure Application Gateway with Web Application Firewall (WAF) or you can use Azure firewall which can protect all traffic from l3 to l7

    For more information, you can refer to the following Azure documentation:

    Ref Image

    User's image

    Kindly accept answer if it helps, please let us know if further questions

    Thanks

    Deepanshu