@Crossley, Erik G Thank you for reaching out to us, Yes, what app proxy can do is publish an internal app with the internal connector server. and for the connector server, we only need to open the outbound port. for an app published by app proxy, it has internal URL (for intranet access) and external URL (for extranet access).
Can Azure App Proxy be used only for external access & bypassed when on local network?
We have several internal custom web apps that we'd like to make available remotely to users on Android/iOS devices but do so in a secure manner.
Currently these apps are available remotely if a specific single identity SSL certificate is present on their device. We're wondering if it's possible to replace this remote access use case with Azure/Entra App Proxy but only proxy the connection when the apps are accessed remotely? And bypass the proxy altogether when devices are on the internal network & have direct line of sight to the internal web servers hosting the apps.
Our concern is not having to send internal traffic out & back into our network again to access a local resource.
1 answer
Sort by: Most helpful
-
Givary-MSFT 32,581 Reputation points Microsoft Employee
2024-03-18T07:07:53.52+00:00