Ability to delete a Public IP on ExpressRoute Gateway
I request for an ability to delete Public IP on ExpressRoute Gateway.
It would be great if I can delete a Public IP assigned to ExpressRoute Gateway due to enhanced security.
I understand the VPN Gateway needs public IP to connect with onpremises VPN device, but I think it is unnecessary for the ExpressRoute Gateway since it is a closed network.
If the ExpressRoute gateway doesn't have a Public IP, we can reduce the risk of unexpected inbound traffic from the Internet.
Is it already possible to configure an ExpressRoute without a public IP address?
Fayez Mohammed commented
Any article that mentions why the ExpressRoute gateway needs a public IP specially when the circuit's use case only requires a private link/peering. I can understand the need for a public IP if we have enabled Microsoft peering as well on the same circuit. If we can have the ability to disable/remove Public IP from the ExpressRoute gateway that will be really nice.
Terry Hardie commented
You could also provide a method to firewall this or move it to an azure only network so it's not globally reachable on public IP