Hi, 

I have API Management which is used to present a number of APIs to internal services - the APIs requests are from internal services only. Except i have a number of LogicApps that need to call some APIs. I dont really want to expose API Managment externally so that the logicApps can call. The LogicApps sit outside of the VNET and i dont want to just white list the IPs of the Logic Apps as these could be used by other Azure customers. 

So is there a way that API Management can block all external requests unless originating from the LogicApps? Maybe something like Hostname or something?

Thanks