crosenblatt if you think it would be better that we talk in private message just let me know.
You asked what I meant by "secure our app from other app services"
Basically, we know that App Services are hosted on shared environment. First we would like to know how the traffic is secured from other tenant.
Second, we host multiple app Services in the same VNet. Each of our customer has its own app service. How the traffic is secured between the app services hosted in the same VNet?
From what we understood (and without having any under the hood schema) we think that without E2E the traffic is in clear on the VNET between the load balancers and the app service. I would expect that with E2E this traffic is now encrypted using TLS.
And from what we understood, there is still unencrypted traffic within the app service itself but this traffic is completely isolated from anything else.
Having a schema of the differences between e2e and non e2e would help us to understand this reality.
This will also help us explain this when we have to conduct security audit.
Regards,
Alex