Azure Application Gateway - Highlights


  1. Application Gateway operates as an application delivery controller (ADC) as a service and offers features like:
    * Autoscaling is useful for workloads with variable traffic. Application Gateway's  fixed capacity mode is useful for scenarios with consistent and predictable workloads.
    * Layer 7 routing capabilities including cookie-based session affinity, round-robin load distribution, URL path/content-based routing, ability to host multiple websites.
    * Web application firewall (WAF)
    * Zone redundancy
    * Secure Sockets Layer (SSL/TLS) termination (not a best practice) and end-to-end SSL
    * Custom error pages
    * HTTP to HTTPS Redirection
  2. Application Gateway is a layer 7 load balancer, which means it works with web traffic only (HTTP, HTTPS, WebSocket, HTTP/2) unlike a Load Balancer which load balances traffic at layer 4 (TCP/UDP). 
  3. Application gateway supports hosting up to 20 websites behind a single gateway that could all be protected against web attacks with WAF.
  4. Web application firewall (WAF) is a feature of Application Gateway that provides centralized protection (without modification to backend code) of your web applications from common exploits and vulnerabilities. WAF SKU comes only in medium and large application gateway instance sizes. 
  5. Application Gateway can be configured as internet facing gateway, internal only gateway, or a combination of both.
  6. Application Gateway is useful for applications that require requests from the same user/client session to reach the same back-end virtual machine. Examples of these applications would be shopping cart applications and web mail servers.
  7. Microsoft guarantees that each Application Gateway Cloud Service having two or more Medium or Large instances will be available at least 99.9% of the time.  No SLA is provided for Application Gateway services with only one instance or with Small instance sizes which are intended for development and testing scenarios.
  8. Application gateways are charged based on the amount of time that the gateway is provisioned and available, as well as the amount of data processed by the application gateways. Data transferred out of Azure data centers from the application gateways will be charged at standard data transfer rates.
  9. Application Gateway is always deployed in a virtual network subnet. This subnet can only contain Application Gateways
  10. Application Gateway v1 does not support static public IP addresses, but it does support static internal IPs.  Application Gateway v2 SKU supports static public IP addresses.
Compiled from official Azure documentation. Follow the links for updates

Related - Compared: Azure Load Balancer, Application Gateway, Traffic Manager 

Comments