Country Level blocking possible to Azure VM with Public IP ?

IT Support 1 Reputation point
2022-06-16T12:03:32.763+00:00

Is it possible to achieve county level blocking to an Azure VM with an associated Public IP ?

Azure Virtual Network
Azure Virtual Network
An Azure networking service that is used to provision private networks and optionally to connect to on-premises datacenters.
1,176 questions
Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
8,176 questions
Windows Server Security
Windows Server Security
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
1,300 questions
{count} votes

3 answers

Sort by: Most helpful
  1. Alan Kinane 16,506 Reputation points Microsoft MVP
    2022-06-16T15:56:39.597+00:00

    Is this for HTTP/HTTPS traffic or something else like RDP/SSH?

    You would have to put a service in front of it that supports this feature and connect via that service.

    It could be a firewall or Traffic Manager or Azure Front Door (HTTP/HTTPS only).

    https://learn.microsoft.com/en-us/azure/traffic-manager/traffic-manager-configure-geographic-routing-method

    https://learn.microsoft.com/en-us/azure/frontdoor/front-door-geo-filtering


  2. Limitless Technology 37,316 Reputation points
    2022-06-17T13:24:56.46+00:00

    Hi there,

    Custom rules allow you to create tailored rules to suit the exact needs of your applications and security policies. Now, you can restrict access to your web applications by country/region.

    You can create custom rules to suit the exact needs of your applications and security policies and restrict access to your web applications by country/region. To create a geo-filtering custom rule, select Geo-location as the Match Type, and then select the country you want to allow/block from your application.

    Some useful article links that might help you in getting some insights are listed below. Geomatch custom rules https://learn.microsoft.com/en-us/azure/web-application-firewall/ag/geomatch-custom-rules

    Block/allow specific IP addresses on Azure Cloud Services https://techcommunity.microsoft.com/t5/azure-paas-blog/block-allow-specific-ip-addresses-on-azure-cloud-services/ba-p/2769203

    -----------------------------------------------------------------------------------------------------------------------------------------

    --If the reply is helpful, please Upvote and Accept it as an answer–

    No comments

  3. IT Support 1 Reputation point
    2022-06-23T11:39:34.657+00:00

    We decided to go with a NSv appliance. Thanks for all the input!