Share via

How to block all geographic region and only allow specific regions to reach my Azure APIM ?

EnterpriseArchitect 5,376 Reputation points
2024-09-04T03:23:01.02+00:00

I have deployed multiple API Management Services (APIM) in my Azure Subscriptions. According to Application Insight, this APIM is hit or maybe attacked by a few thousand requests from around the world daily which my company and product do not have business with.

How can I block or allow API requests based on a specific region instead of the IP address?

Do I have to deploy Azure WAF or Web Application Gateway before the APIM to block or allow specific requests based on Geographic locations?

Any help would be greatly appreciated.

Azure API Management
Azure API Management
An Azure service that provides a hybrid, multi-cloud management platform for APIs.
2,111 questions

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. JananiRamesh-MSFT 27,021 Reputation points
    2024-09-04T05:14:45.53+00:00

    @EnterpriseArchitect Thanks for reaching out. Deploying Azure ADF WAF or Application Gateway before your APIM is a recommended approach to block or allow specific requests based on geographic locations. This setup provides an additional layer of security and helps manage traffic more effectively.

    When you deploy WAF or Application Gateway before your APIM, you can configure it to handle incoming requests and apply the necessary filtering rules. This setup ensures that only requests from allowed regions are forwarded to your APIM, which can help reduce the number of unwanted requests and improve the overall performance of your API.

    Please let me know if you have any further questions.

    1 person found this answer helpful.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.