You can use secure tunneling with Azure Relay to establish enhanced-security bidirectional TCP connections to edge devices without making significant changes to your firewall or to network configuration on the edge. This article shows you how.
https://learn.microsoft.com/en-us/azure/architecture/example-scenario/networking/secure-tunneling-azure-relay
