For many of us who work in and out of a corporate network, sometimes getting to a service online can be a slow process. Security policies that are in place are a must in order to survive the internet space these days.
On the other hand, it can also be a pain if you want to get the job done and you want to do it fast.
Luckily major online services and platforms offer their IP address ranges. Having that, the IT infrastructure team can whitelist that range and everyone can be happy. The downside is that it needs maintenance because IP ranges can change.
Azure IP Ranges and Service Tags – Public Cloud
Microsft Azure compiles, on a weekly basis, a list of all its services and their IP address ranges. This list is so complete that it includes per region and per Service Tag -i.e. Storage Account, Traffic Manager- its IP address range. This file contains IPv4 information only. IPv6 will be supported in the near future by extending the schema.
When new ranges appear in the file, the IPs are not used for at least a week, so that you have time to update your security rules.
Tip: These service tags can also be used to simplify the Network Security Group rules for your Azure deployments.
Download the JSON file from here.
Note: You should whitelist only the IPs you need in order to avoid trusting a VM or a service that could potentially try to do any malicious act.