Implement IP Address restrictions in CSDEF (restrict IP Addresses in a similar way to SQL Azure)
This functionality is coming soon in the platform; stay tuned.
Hakan Lindestaf commented
It would be better to administer it through the portal so we don't have to deploy new versions if the restrictions change. (I'm thinking DEV instances of web sites, etc that I want to restrict access to).
This feature is desperately needed! The workaround below works OK but you loose autoscaling.
Sandrino Di Mattia commented
This solution allows you to do it with the CSCFG: http://fabriccontroller.net/blog/posts/apply-ip-address-restrictions-to-your-windows-azure-cloud-services/
Agreed. This is pretty much a must-have feature. I need to be able to open ports to certain IP ranges, but not to the entire internet (like Endpoints function today on VMs).
Improve security for Intranet style applications