I need to make Perspective accessable on the internet and am thinking of setting it up through Microsofts Azure Application Proxy as described here:
The benefits of the Application proxy are:
- Increased security over just exposing an ignition port directly.
- I can expose just one project on the gateway without any of the other project accessable, by mapping only the project url: https://mysite.com:8043/data/perspective/client/myproject/
The Application Proxy is essentially a reverse proxy with a few more features.
The project is already configured with ssl and an identity provider.
I currently use a VPN but this change is to make it more accessable to many of the mobile users.
I’m looking for advice on:
- Will this work?
- Is this a valid and secure solution?
- Has anyone done this before and what are the pitfalls?
Any advice appreciated.