Is there an existing issue for this?
Community Note
- Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
- Please do not leave comments along the lines of "+1", "me too" or "any updates", they generate extra noise for issue followers and do not help prioritize the request
- If you are interested in working on this issue or have submitted a pull request, please leave a comment and review the contribution guide to help.
Description
Add support for Private Application Gateway deployments in the provider.
As of 3 April 2026 this went GA, there is no longer a requirement to have a public IP address on Application Gateway V2 and you can configure network isolation to only require an private ip address for private network usage.
https://techcommunity.microsoft.com/blog/azureinfrastructureblog/%F0%9F%9A%80-general-availability-of-private-application-gateway-on-azure-application-gate/4508294
here is the technical documentation on this
https://learn.microsoft.com/en-us/azure/application-gateway/application-gateway-private-deployment?tabs=portal
New or Affected Resource(s)/Data Source(s)
azurerm_application_gateway
Potential Terraform Configuration
resource "azurerm_application_gateway" "network" {
name = "example-appgateway"
resource_group_name = azurerm_resource_group.example.name
location = azurerm_resource_group.example.location
network_isolation_enabled = true (New FEATURE to enable private application gateway only)
sku {
name = "Standard_v2"
tier = "Standard_v2"
capacity = 2
}
gateway_ip_configuration {
name = "my-gateway-ip-configuration"
subnet_id = azurerm_subnet.example.id
}
frontend_port {
name = local.frontend_port_name
port = 80
}
frontend_ip_configuration {
name = local.frontend_ip_configuration_name
}
backend_address_pool {
name = local.backend_address_pool_name
}
backend_http_settings {
name = local.http_setting_name
cookie_based_affinity = "Disabled"
path = "/path1/"
port = 80
protocol = "Http"
request_timeout = 60
}
http_listener {
name = local.listener_name
frontend_ip_configuration_name = local.frontend_ip_configuration_name
frontend_port_name = local.frontend_port_name
protocol = "Http"
}
request_routing_rule {
name = local.request_routing_rule_name
priority = 9
rule_type = "Basic"
http_listener_name = local.listener_name
backend_address_pool_name = local.backend_address_pool_name
backend_http_settings_name = local.http_setting_name
}
}References
No response
Is there an existing issue for this?
Community Note
Description
Add support for Private Application Gateway deployments in the provider.
As of 3 April 2026 this went GA, there is no longer a requirement to have a public IP address on Application Gateway V2 and you can configure network isolation to only require an private ip address for private network usage.
https://techcommunity.microsoft.com/blog/azureinfrastructureblog/%F0%9F%9A%80-general-availability-of-private-application-gateway-on-azure-application-gate/4508294
here is the technical documentation on this
https://learn.microsoft.com/en-us/azure/application-gateway/application-gateway-private-deployment?tabs=portal
New or Affected Resource(s)/Data Source(s)
azurerm_application_gateway
Potential Terraform Configuration
References
No response