Azure function ip4 address
We have an Azure Function that needs to call a 3rd party web service that also happens to be hosted in Azure - at least for the time being.
They need to allowlist the IP address of our Azure based caller - an Azure function app.
I've added a NAT gateway and public static IP to the subnet that our Azure function app is attached.
When our function calls https://httpbin.org/ip then it returns the IPv4 address of the NAT gateway, as expected. However, the 3rd party noticed that requests were being presented with an IPv6 address.
It seems this is expected behaviour when using an App Service with VNet integration enabled.
How can the config be changed so that an IPv4 address is always presented to the 3rd party service?
To configure only IPv4 address is always presented to the 3rd party there is two possible way to check this below workaround:
I created a function app with vnet integration like below:
Created virtual network:
Now, you can create a public IP and use a NAT gateway to modify this outbound IP address.
created public ip IPV4 with static address and associated virtual network subnet with nat gateway like below:
In function app properties you can check the outbound ip address like below:
Now you can see outbound IP address of the value presented like below:
Reference:
azure-docs/functions-how-to-use-nat-gateway.md at main · MicrosoftDocs/azure-docs · GitHub
Additionally: In your function app -> configuration -> New application setting WEBSITE_PREJUDICE_IPV4 value is 1 or WEBSITE_IP_SECURITY_FEATURE_IP_RESTRICTION value is true this IPv6 traffic will be blocked and only IPv4 addresses will be presented to the 3rd party service like below.
- TimeTrigger Exception "Could not create BlobContainerClient for ScheduleMonitor."
- Azure Functions unable to start locally: can't find Microsoft.Extensions.Configuration.Abstractions, Version=8.0.0.0
- After importing an Azure Function app into API Management service, how do I view/edit the policy adding the generated host key authorizing calls?
- Azure ShareClient: This request is not authorized to perform this operation
- How to mock DurableTaskClient in unite test and getting error in on ScheduleNewOrchestrationInstanceAsync mocking setup
- Azure Function App Blob trigger using Managed Identity not working
- Azure functions - where to store configuration values
- Azure Function App Listen to Event Hub using Managed Identity
- Azure Functions - using appsettings.json
- Zip deploy of Azure function was a success but Functions in Azure is empty
- Why are logs being duplicated in Azure Functions after migrating to .NET 8 Isolated Worker?
- Uses SQL connection strings from Azure Keyvault in Azure functions
- Azure Functions Core Tools version in VSCode when debugging incorrect and failing (Microsoft.Azure.WebJobs.Script.Grp)
- Returning XML in OkObjectResult in Azure Function
- Azure Functions in a Container: 0 functions found
- .NET 8 ISOLATED Azure Function - Binding attributes not working
- Need guidance on how to create Access Policy for Key Vault in a different group from ARM Template deployment
- Azure Function - Error building configuration in an external startup class
- How to do a durable post call in an ServiceBusTrigger azure function?
- Azure Functions Isolated worker model adding to Azure Storage queue error: System.ObjectDisposedException
- EventGrid Trigger on Authenticated Azure Function App
- Error when create_file() method in ShareFileClient class is called
- Azure function apps logs not showing
- Function and private storage account networking
- How can i set the scm publishing and ftp in an Azure function App using azure cli?
- Azure function app logs stop outputting to app insights inside new thread
- .NET version not set in azure function settings - bicep
- Find/Set Azure Functions Core Tools version Visual Studio use
- Azure Powershell - how to list all Environment variables
- Azure function not able to index functions