Azure is blocking request that come from the same server

0 投票
最新提问 用户: (160 分)


Umbraco CMS website runs on Azure as App Service

Scheduled Publishing

One of the Umbraco functionalities is to allow to publish content on a given time. The publish functionality makes a HTTP call to same web site (or a different server but same website in load balanced environment).

API call url:

IP Security

Due to client requirements, access to the site is restricted to a given list of IP addresses. This task is being completed with IP Security restriction in web.config.

    <requestLimits maxAllowedContentLength="52428800" />
  <ipSecurity allowUnlisted="false" denyAction="NotFound">
    <!-- "clear" removes all upstream restrictions -->
    <clear />

    <!-- permit the loopback address  -->
    <add ipAddress="" allowed="true" />


    <!-- domain Name for Scheduled Publishing -->
    <add allowed="true" domainName=""/>


When IP Security is turned on, the HTTP call to publish API is being blocked as not white listed one.

API call response Status Code and Content:

404 - NotFound
"The resource you are looking for has been removed, had its name changed, or is temporarily unavailable."

Problem Thread on

Fix attempts

Adding domainName to the list of allowed entries

<!-- domain Name for Scheduled Publishing -->
<add allowed="true" domainName=""/>

This solution doesn't work. Calls are still being blocked.


How this can be fixed? Is there any functionality that can be override?


0 投票
最新回答 用户: (160 分)

Ok, I've found the solution. I think it will work.

I've found this question on stackoverflow and it worked :)


Solution is to add ALL outbound IP addresses into System.WebServer > Security > ipSecurity > [List].

Azure App Service Outbound Ip Addresses

Outbound Ip Addresses are comma separated list of ips. You need to add all of them to the WhiteList in web.config.


I'm not sure if the list of Outbound Ips is static and will not change in the future...

欢迎来到 Security Q&A ,有什么不懂的可以尽管在这里提问,你将会收到社区其他成员的回答。