Country Level blocking possible to Azure VM with Public IP ?

IT Support 1 Reputation point
2022-06-16T12:03:32.763+00:00

Is it possible to achieve county level blocking to an Azure VM with an associated Public IP ?

Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
2,638 questions
Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
13,706 questions
Windows Server Security
Windows Server Security
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
1,903 questions
{count} votes

3 answers

Sort by: Most helpful
  1. Alan Kinane 16,931 Reputation points MVP
    2022-06-16T15:56:39.597+00:00

    Is this for HTTP/HTTPS traffic or something else like RDP/SSH?

    You would have to put a service in front of it that supports this feature and connect via that service.

    It could be a firewall or Traffic Manager or Azure Front Door (HTTP/HTTPS only).

    https://learn.microsoft.com/en-us/azure/traffic-manager/traffic-manager-configure-geographic-routing-method

    https://learn.microsoft.com/en-us/azure/frontdoor/front-door-geo-filtering


  2. Limitless Technology 39,811 Reputation points
    2022-06-17T13:24:56.46+00:00

    Hi there,

    Custom rules allow you to create tailored rules to suit the exact needs of your applications and security policies. Now, you can restrict access to your web applications by country/region.

    You can create custom rules to suit the exact needs of your applications and security policies and restrict access to your web applications by country/region. To create a geo-filtering custom rule, select Geo-location as the Match Type, and then select the country you want to allow/block from your application.

    Some useful article links that might help you in getting some insights are listed below. Geomatch custom rules https://learn.microsoft.com/en-us/azure/web-application-firewall/ag/geomatch-custom-rules

    Block/allow specific IP addresses on Azure Cloud Services https://techcommunity.microsoft.com/t5/azure-paas-blog/block-allow-specific-ip-addresses-on-azure-cloud-services/ba-p/2769203

    -----------------------------------------------------------------------------------------------------------------------------------------

    --If the reply is helpful, please Upvote and Accept it as an answer–

    0 comments No comments

  3. IT Support 1 Reputation point
    2022-06-23T11:39:34.657+00:00

    We decided to go with a NSv appliance. Thanks for all the input!


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.