We use Azure Web Apps with Azure SQL and would like to make this setup more secure by configuring the database firewall to only allow connection from the specific web apps rather than any service in Azure. How can I limit connections to just my Azure services?
By default, access through the Azure SQL Database firewall is disabled for all Azure services. Choose ON on this page to enable access for all Azure services. Select Save. Port 1433 is now open on the server and a server-level IP-based, firewall rule is created for your current IP address.
Assuming that you have an ip address (hosting plan needs to be shared, basic or standard)**:
a) Navigate to SQL Databases >> Servers Tab >> Select the server hosting your database >> Configure Tab
b) Alternatively select your database >> Manage Allowed Ip Address (Right side Quick Glance bar)
**You can view your ip address clicking Manage Domains on the Website Dashboard bottom bar.
There are 4 outbound IP addresses for a Web App which you can look up on the Properties tab for the Web App in the management portal.
You need to add these outbound IP addresses to the Firewall rules.
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With