I am looking for some advice on how to securely configure the network of a hybrid web application. The web application will be hosted in Azure Web sites, and will be connecting to on-premise database through a WCF front end.
Does the web site have a static IP? When you configure a custom domain you have an option of specifying an A record, will this A record need to be updated at any stage?
The business has very strict firewall restrictions and opening up large ranges to is not desired, is there any way to establish a persistent virtual network to an Azure Web Site for backend message transfers?