App Service Private Endpoints now generally available
Published date: October 14, 2020
Azure App Service support for Private Endpoints has now entered General Availability in all Azure public regions for both Windows and Linux apps. Private Endpoints enables you to consume your app through a specific IP address located in your Azure Virtual Network (VNet), eliminating exposure to the public internet. Available in Premium v2, Premium v3 and Functions Elastic Premium, this feature is now fully supported with a 99.95 SLA. With Private Endpoints you can:
Enable hosting secure and internal Line of Business applications: With a private IP address for inbound traffic, you can build applications that only are accessible from inside the VNet or across connections to the VNet.
Expose your apps inside your VNet without data exfiltration issues: The private endpoint only enables you to reach your app.
Build secure multi-tier web applications: Private Endpoints only enables inbound connectivity to your app and does not enable outbound connectivity into a VNet, but this can be achieved with VNet integration, so by combining features such as VNet Integration, you can build complex applications that can call to secure backend API endpoints easily.
App Service Environments remain our best in class offering for isolated workloads, as it is single tenant and completely in the customer VNet.