Jan 21 2021 10:11 PM
Hello folks,
We are planning to deploy Web app in Azure and checking as what is the latest option to take care of Vulnerability besides Firewall level security.
Is Application gateway in front of the Web Apps enough or do I need to factor Azure Front Door?
Jan 25 2021 05:25 AM
Solution
Hi it depend of your routing and availability requirement
If your application don't need to be deployed cross region you can go with application gateway +waf which provide protection against Top 10 Owasp vulnerabilities .
In the documentation it is mentionned :
While both Front Door and Application Gateway are layer 7 (HTTP/HTTPS) load balancers, the primary difference is that Front Door is a global service whereas Application Gateway is a regional service. While Front Door can load balance between your different scale units/clusters/stamp units across regions, Application Gateway allows you to load balance between your VMs/containers etc. that is within the scale unit.
Frequently asked questions about Azure Application Gateway | Microsoft Docs
Azure Front Door - Frequently Asked Questions | Microsoft Docs
Feb 01 2021 04:11 AM
@ibnmbodji thanks
Feb 01 2021 12:22 PM
Jan 25 2021 05:25 AM
Solution
Hi it depend of your routing and availability requirement
If your application don't need to be deployed cross region you can go with application gateway +waf which provide protection against Top 10 Owasp vulnerabilities .
In the documentation it is mentionned :
While both Front Door and Application Gateway are layer 7 (HTTP/HTTPS) load balancers, the primary difference is that Front Door is a global service whereas Application Gateway is a regional service. While Front Door can load balance between your different scale units/clusters/stamp units across regions, Application Gateway allows you to load balance between your VMs/containers etc. that is within the scale unit.
Frequently asked questions about Azure Application Gateway | Microsoft Docs
Azure Front Door - Frequently Asked Questions | Microsoft Docs