How to block all geographic region and only allow specific regions to reach my Azure APIM ?
EnterpriseArchitect
5,316
Reputation points
I have deployed multiple API Management Services (APIM) in my Azure Subscriptions. According to Application Insight, this APIM is hit or maybe attacked by a few thousand requests from around the world daily which my company and product do not have business with.
How can I block or allow API requests based on a specific region instead of the IP address?
- As described in https://video2.skills-academy.com/en-us/azure/web-application-firewall/ag/geomatch-custom-rules#countryregion-codes and https://video2.skills-academy.com/en-us/azure/architecture/web-apps/api-management/architectures/protect-apis
Do I have to deploy Azure WAF or Web Application Gateway before the APIM to block or allow specific requests based on Geographic locations?
Any help would be greatly appreciated.
Sign in to answer