Achieve country level blocking while using azure traffic manager and azure application gateway with WAF

Akash Samal 46 Reputation points
2020-02-17T15:13:52.21+00:00

We have used azure traffic manager and azure application gateway with a Web application firewall for MVC C# web Application which hosted on the Azure virtual machine.

For security reasons, we need to allow specific IP addresses and block access at the country level. But, We are unable to find a way to block access at the country level and also allow specific IP addresses from that country.

Can you please guide a way/ feasibility to achieve this?
Does it need any other azure service or can be it achieved with existing services/configuration.

Azure Traffic Manager
Azure Traffic Manager
An Azure service that is used to route incoming network traffic for high performance and availability.
111 questions
Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
7,155 questions
0 comments No comments
{count} votes

Accepted answer
  1. SnehaAgrawal-MSFT 19,436 Reputation points
    2020-02-18T06:37:13.727+00:00

    Thanks for asking question! You can create Custom rules to suit the exact needs of your applications and security policies and restrict access to your web applications by country/region. To create a geo-filtering custom rule, select Geo-location as the Match Type, and then select the country you want to allow/block from your application.

    For more information, see Geomatch custom rules (preview).

    1 person found this answer helpful.

1 additional answer

Sort by: Most helpful
  1. Danejahtt 1 Reputation point
    2020-07-19T08:15:14.84+00:00

    Hey Good day, How are you guys.

    Is the Geo-location working now with AppGW>?

    Thanks