remove preview tag and registration sections

greg-lindsay · greg-lindsay · commit 5e192338ee2f · 2024-07-18T11:20:37.000-07:00
diff --git a/articles/application-gateway/application-gateway-private-deployment.md b/articles/application-gateway/application-gateway-private-deployment.md
@@ -1,179 +1,44 @@
 ---
-title: Private Application Gateway deployment (preview)
+title: Private Application Gateway deployment
 titleSuffix: Azure Application Gateway
 description: Learn how to restrict access to Application Gateway
 services: application-gateway
 author: greg-lindsay
 ms.service: application-gateway
 ms.topic: how-to
-ms.date: 05/22/2023
+ms.date: 07/18/2024
 ms.author: greglin
 #Customer intent: As an administrator, I want to evaluate Azure Private Application Gateway
 ---
 
-# Private Application Gateway deployment (preview)
+# Private Application Gateway deployment
 
 ## Introduction
 
 Historically, Application Gateway v2 SKUs, and to a certain extent v1, have required public IP addressing to enable management of the service.  This requirement has imposed several limitations in using fine-grain controls in Network Security Groups and Route Tables.  Specifically, the following challenges have been observed:
 
-1. All Application Gateways v2 deployments must contain public facing frontend IP configuration to enable communication to the **Gateway Manager** service tag.
-2. Network Security Group associations require rules to allow inbound access from GatewayManager and Outbound access to Internet.
-3. When introducing a default route (0.0.0.0/0) to forward traffic anywhere other than the Internet, metrics, monitoring, and updates of the gateway result in a failed status.
+* All Application Gateways v2 deployments must contain public facing frontend IP configuration to enable communication to the **Gateway Manager** service tag.
+* Network Security Group associations require rules to allow inbound access from GatewayManager and Outbound access to Internet.
+* When introducing a default route (0.0.0.0/0) to forward traffic anywhere other than the Internet, metrics, monitoring, and updates of the gateway result in a failed status.
 
 Application Gateway v2 can now address each of these items to further eliminate risk of data exfiltration and control privacy of communication from within the virtual network. These changes include the following capabilities:
 
-1. Private IP address only frontend IP configuration
+* Private IP address only frontend IP configuration
    - No public IP address resource required
-2. Elimination of inbound traffic from GatewayManager service tag via Network Security Group
-3. Ability to define a **Deny All** outbound Network Security Group (NSG) rule to restrict egress traffic to the Internet
-4. Ability to override the default route to the Internet (0.0.0.0/0)
-5. DNS resolution via defined resolvers on the virtual network [Learn more](../virtual-network/manage-virtual-network.yml#change-dns-servers), including private link private DNS zones.
+* Elimination of inbound traffic from GatewayManager service tag via Network Security Group
+* Ability to define a **Deny All** outbound Network Security Group (NSG) rule to restrict egress traffic to the Internet
+* Ability to override the default route to the Internet (0.0.0.0/0)
+* DNS resolution via defined resolvers on the virtual network [Learn more](../virtual-network/manage-virtual-network.yml#change-dns-servers), including private link private DNS zones.
 
 Each of these features can be configured independently. For example, a public IP address can be used to allow traffic inbound from the Internet and you can define a **_Deny All_** outbound rule in the network security group configuration to prevent data exfiltration.
 
-## Onboard to public preview
-
-The functionality of the new controls of private IP frontend configuration, control over NSG rules, and control over route tables, are currently in public preview.  To join the public preview, you can opt in to the experience using the Azure portal, PowerShell, CLI, or REST API.
-
-When you join the preview, all new Application Gateways provision with the ability to define any combination of the NSG, Route Table, or private IP configuration features.  If you wish to opt out from the new functionality and return to the current generally available functionality of Application Gateway, you can do so by [unregistering from the preview](#unregister-from-the-preview).
-
-For more information about preview features, see [Set up preview features in Azure subscription](../azure-resource-manager/management/preview-features.md)
-
-## Register to the preview
-
-# [Azure Portal](#tab/portal)
-
-Use the following steps to enroll into the public preview for the enhanced Application Gateway network controls via the Azure portal:
-
-1. Sign in to the [Azure portal](https://portal.azure.com/).
-2. In the search box, enter _subscriptions_ and select **Subscriptions**.
-
-    :::image type="content" source="../azure-resource-manager/management/media/preview-features/search.png" alt-text="Azure portal search.":::
-
-3. Select the link for your subscription's name.
-
-    :::image type="content" source="../azure-resource-manager/management/media/preview-features/subscriptions.png" alt-text="Select Azure subscription.":::
-
-4. From the left menu, under **Settings** select **Preview features**.
-
-    :::image type="content" source="../azure-resource-manager/management/media/preview-features/preview-features-menu.png" alt-text="Azure preview features menu.":::
-
-5. You see a list of available preview features and your current registration status.
-
-    :::image type="content" source="../azure-resource-manager/management/media/preview-features/preview-features-list.png" alt-text="Azure portal list of preview features.":::
-
-6. From **Preview features** type into the filter box **EnableApplicationGatewayNetworkIsolation**, check the feature, and click **Register**.
-
-    :::image type="content" source="../azure-resource-manager/management/media/preview-features/filter.png" alt-text="Azure portal filter preview features.":::
-
-# [Azure PowerShell](#tab/powershell)
-
-To enroll into the public preview for the enhanced Application Gateway network controls via Azure PowerShell, the following commands can be referenced:
-
-```azurepowershell
-Register-AzProviderFeature -FeatureName "EnableApplicationGatewayNetworkIsolation" -ProviderNamespace "Microsoft.Network"
-```
-
-To view registration status of the feature, use the Get-AzProviderFeature cmdlet.
-```Output
-FeatureName                                ProviderName        RegistrationState
------------                                ------------        -----------------
-EnableApplicationGatewayNetworkIsolation   Microsoft.Network   Registered
-```
-
-# [Azure CLI](#tab/cli)
-
-To enroll into the public preview for the enhanced Application Gateway network controls via Azure CLI, the following commands can be referenced:
-
-```azurecli
-az feature register --name EnableApplicationGatewayNetworkIsolation --namespace Microsoft.Network
-```
-
-To view registration status of the feature, use the Get-AzProviderFeature cmdlet.
-```Output
-Name                                                        RegistrationState
-----------------------------------------------------------  -------------------
-Microsoft.Network/EnableApplicationGatewayNetworkIsolation  Registered
-```
-
-A list of all Azure CLI references for Private Link Configuration on Application Gateway can be found here: [Azure CLI CLI - Private Link](/cli/azure/network/application-gateway/private-link)
-
----
-
->[!Note]
->Feature registration may take up to 30 minutes to transition from Registering to Registered status. 
-
-For more information about preview features, see [Set up preview features in Azure subscription](../azure-resource-manager/management/preview-features.md)
-
-## Unregister from the preview
-
-# [Azure Portal](#tab/portal)
-
-To opt out of the public preview for the enhanced Application Gateway network controls via Portal, use the following steps:
-
-1. Sign in to the [Azure portal](https://portal.azure.com/).
-2. In the search box, enter _subscriptions_ and select **Subscriptions**.
-
-    :::image type="content" source="../azure-resource-manager/management/media/preview-features/search.png" alt-text="Azure portal search.":::
-
-3. Select the link for your subscription's name.
-
-    :::image type="content" source="../azure-resource-manager/management/media/preview-features/subscriptions.png" alt-text="Select Azure subscription.":::
-
-4. From the left menu, under **Settings** select **Preview features**.
-
-    :::image type="content" source="../azure-resource-manager/management/media/preview-features/preview-features-menu.png" alt-text="Azure preview features menu.":::
-
-5. You see a list of available preview features and your current registration status.
-
-    :::image type="content" source="../azure-resource-manager/management/media/preview-features/preview-features-list.png" alt-text="Azure portal list of preview features.":::
-
-6. From **Preview features** type into the filter box **EnableApplicationGatewayNetworkIsolation**, check the feature, and click **Unregister**.
-
-    :::image type="content" source="../azure-resource-manager/management/media/preview-features/filter.png" alt-text="Azure portal filter preview features.":::
-
-# [Azure PowerShell](#tab/powershell)
-
-To opt out of the public preview for the enhanced Application Gateway network controls via Azure PowerShell, the following commands can be referenced:
-
-```azurepowershell
-Unregister-AzProviderFeature -FeatureName "EnableApplicationGatewayNetworkIsolation" -ProviderNamespace "Microsoft.Network"
-```
-
-To view registration status of the feature, use the Get-AzProviderFeature cmdlet.
-```Output
-FeatureName                                ProviderName        RegistrationState
------------                                ------------        -----------------
-EnableApplicationGatewayNetworkIsolation   Microsoft.Network   Unregistered
-```
-
-# [Azure CLI](#tab/cli)
-
-To opt out of the public preview for the enhanced Application Gateway network controls via Azure CLI, the following commands can be referenced:
-
-```azurecli
-az feature unregister --name EnableApplicationGatewayNetworkIsolation --namespace Microsoft.Network
-```
-
-To view registration status of the feature, use the Get-AzProviderFeature cmdlet.
-```Output
-Name                                                        RegistrationState
-----------------------------------------------------------  -------------------
-Microsoft.Network/EnableApplicationGatewayNetworkIsolation  Unregistered
-```
-
-A list of all Azure CLI references for Private Link Configuration on Application Gateway can be found here: [Azure CLI CLI - Private Link](/cli/azure/network/application-gateway/private-link)
-
----
-
 ## Regions and availability
 
-The Private Application Gateway preview is available to all public cloud regions [where Application Gateway v2 sku is supported](./overview-v2.md#unsupported-regions).
+The Private Application Gateway is available to all public cloud regions [where Application Gateway v2 sku is supported](./overview-v2.md#unsupported-regions).
 
 ## Configuration of network controls
 
-After registration into the public preview, configuration of NSG, Route Table, and private IP address frontend configuration can be performed using any methods. For example: REST API, ARM Template, Bicep deployment, Terraform, PowerShell, CLI, or Portal.  No API or command changes are introduced with this public preview.
+Configuration of NSG, Route Table, and private IP address frontend configuration can be performed using any methods. For example: REST API, ARM Template, Bicep deployment, Terraform, PowerShell, CLI, or Portal.  No API or command changes are introduced with this feature.
 
 ## Resource Changes
 
@@ -310,9 +175,7 @@ Result:
 
 ## Route Table Control
 
-In the current offering of Application Gateway, association of a route table with a rule (or creation of rule) defined as 0.0.0.0/0 with a next hop as virtual appliance is unsupported to ensure proper management of Application Gateway.
-
-After registration of the public preview feature, the ability to forward traffic to a virtual appliance is now possible via definition of a route table rule that defines 0.0.0.0/0 with a next hop to Virtual Appliance.
+The ability to forward traffic to a virtual appliance is now possible via definition of a route table rule that defines 0.0.0.0/0 with a next hop to Virtual Appliance.
 
 Forced Tunneling or learning of 0.0.0.0/0 route through BGP advertising does not affect Application Gateway health, and is honored for traffic flow. This scenario can be applicable when using VPN, ExpressRoute, Route Server, or Virtual WAN.
 
@@ -345,9 +208,9 @@ To create a route table and associate it to the Application Gateway subnet:
 
 ## Limitations / Known Issues
 
-While in public preview, the following limitations are known.
+The following limitations are known.
 
-### Private link configuration (preview)
+### Private link configuration
 
 [Private link configuration](private-link.md) support for tunneling traffic through private endpoints to Application Gateway is unsupported with private only gateway.
 
