Azure Application Gateway

Azure Application Gateway is a web traffic load balancer that enables you to manage traffic to your web applications.

Azure Proprietary Cloud Service Only
Category Network Security
Last page update 18 days ago
Pricing Details Pricing varies based on SKU and usage, with charges for outbound data transfers.
Target Audience Developers and IT professionals looking to manage web traffic and enhance application performance.

Azure Application Gateway addresses the complex challenge of managing web traffic at the application layer (OSI layer 7) by providing advanced load balancing and delivery control. This tool operates beyond traditional load balancers, which only route traffic based on source IP and port, by making decisions based on HTTP request attributes such as URI paths, host headers, and more.

Technically, Application Gateway is configured to route traffic using listeners and rules that direct incoming requests to specific backend pools. For instance, you can configure URL-based routing where traffic to /images is routed to one pool of servers optimized for images, while traffic to /video is routed to another pool optimized for videos.

Operationally, setting up an Application Gateway involves creating the gateway, defining backend address pools, configuring listeners, and establishing routing rules. The gateway can be integrated with various backend targets, including virtual machines, App Services, and even multi-tenant backends. It is crucial to ensure that the backend health is monitored and that the configuration aligns with the specific requirements, such as using custom domains and TLS bindings for secure connections.

Key considerations include the use of Web Application Firewall (WAF) for protection against malicious web requests, and the option to use Private Link for private connectivity to backend resources. The V2 SKU offers enhanced features like autoscaling, zone redundancy, and static VIP, along with better performance and configuration update times. However, it's important to note that data transfers out of Azure data centers incur charges, while inbound data is free.

From a technical standpoint, Application Gateway supports various protocols, including HTTP/HTTPS, and can handle header rewrites and custom WAF rules. The infrastructure can be managed through the Azure portal, Azure PowerShell, or Azure CLI, providing flexibility in deployment and management. However, there are limitations and considerations around pricing, with different SKUs offering varying levels of functionality and cost structures.

Improve this page