You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/app-service/networking/private-endpoint.md
+11-3Lines changed: 11 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -4,7 +4,7 @@ description: Connect privately to a Web App using Azure Private Endpoint
4
4
author: ericgre
5
5
ms.assetid: 2dceac28-1ba6-4904-a15d-9e91d5ee162c
6
6
ms.topic: article
7
-
ms.date: 03/18/2020
7
+
ms.date: 05/12/2020
8
8
ms.author: ericg
9
9
ms.service: app-service
10
10
ms.workload: web
@@ -24,7 +24,7 @@ Using Private Endpoint for your Web App enables you to:
24
24
- Secure your Web App by configuring the Private Endpoint, eliminating public exposure.
25
25
- Securely connect to Web App from on-premises networks that connect to the VNet using a VPN or ExpressRoute private peering.
26
26
27
-
If you just need a secure connection between your VNet and your Web App, a Service Endpoint is the simplest solution. If you also need to reach the web app from on-premises through an Azure gateway, a regionally peered VNet or a globally peered VNet, Private Endpoint is the solution.
27
+
If you just need a secure connection between your VNet and your Web App, a Service Endpoint is the simplest solution. If you also need to reach the web app from on-premises through an Azure gateway, a regionally peered VNet, or a globally peered VNet, Private Endpoint is the solution.
28
28
29
29
For more information, see [Service Endpoints][serviceendpoint].
30
30
@@ -59,14 +59,22 @@ In the Web HTTP logs of your Web App, you will find the client source IP. This i
59
59
## DNS
60
60
61
61
As this feature is in preview, we don't change the DNS entry during the preview. You need to manage the DNS entry in your private DNS server or Azure DNS private zone yourself.
62
-
If you need to use a custom DNS name, you must add the custom name in your Web App. During the preview, the custom name must be validated like any custom name, using public DNS resolution. See [custom DNS validation][dnsvalidation] for more information.
62
+
If you need to use a custom DNS name, you must add the custom name in your Web App. During the preview, the custom name must be validated like any custom name, using public DNS resolution. For more information, see [custom DNS validation][dnsvalidation].
63
+
64
+
If you need to use the Kudu console, or Kudu REST API (deployment with Azure DevOps self-hosted agents for example), you need to create two records in your Azure DNS private zone or your custom DNS server.
For pricing details, see [Azure Private Link pricing][pricing].
67
71
68
72
## Limitations
69
73
74
+
When you use Azure Function in Elastic Premium Plan with Private Endpoint, you cannot run or execute the function in Azure Web portal. You must have direct network access in order to run your app or you will receive an HTTP 403 error.
75
+
76
+
During the preview only the production slot is exposed behind the Private Endpoint, other slots are reachable by Public Endpoint only.
77
+
70
78
We are improving Private Link feature and Private Endpoint regularly, check [this article][pllimitations] for up-to-date information about limitations.
0 commit comments