Connect Azure Front Door Premium to an internal load balancer origin with Private Link
This article will guide you through how to configure Azure Front Door Premium SKU to connect to your internal load balancer origin using the Azure Private Link service.
Create a private link service.
Sign in to Azure
Sign in to the Azure portal.
Enable Private Link to an internal load balancer
In this section, you'll map the Private Link service to a private endpoint created in Azure Front Door's private network.
Within your Azure Front Door Premium profile, under Settings, select Origin groups.
Select the origin group you want to enable Private Link for the internal load balancer.
Select + Add an origin to add an internal load balancer origin.
For Select an Azure resource, select In my directory. Select or enter the following settings to configure the site you want Azure Front Door Premium to connect with privately.
Setting Value Region Select the region that is the same or closest to your origin. Resource type Select Microsoft.Network/privateLinkServices. Resource Select your Private link tied to the internal load balancer. Target sub resource Leave blank. Request message Customize message or choose the default.
Then select Add and then Update to save your configuration.
Approve Azure Front Door Premium private endpoint connection from Private link service
Go to the Private Link Center and select Private link services. Then select your Private link name.
Select Private endpoint connections under Settings.
Select the pending private endpoint request from Azure Front Door Premium then select Approve.
Once approved, it should look like the screenshot below. It will take a few minutes for the connection to fully establish. You can now access your internal load balancer from Azure Front Door Premium.
Learn about Private Link service.