Azure Front Door

Brass Contributor

Hello Folks !!


After a long time , I am back with a new topic explaining Azure's latest (but not so ) service to you ie Azure Front Door service. Let's go with it !!


It is a global, scalable entry-point that uses the  global edge network to create fast, secure, and widely used web applications. Basically it is a   cloud Content Delivery Network (CDN) that provides fast, reliable, and secure access between you and your applications’  web content across the globe.

It works at layer 7 using anycast protocol with split TCP and Microsoft’s global network to improve global connectivity. You can use your routing method to ensure that Front Door will route your client requests to the fastest and most available application backend.


Now let's coming to "why we should use Azure front door " --


Azure Front Door enables internet-facing application to:


  • Helps us to operate the architecture that have dynamic, high-quality digital experiences with highly automated, secure, and reliable platforms.
  • To accelerate your application and  scale to your users wherever they're creating opportunities for you to compete, weather change, and quickly adapt to new demand and markets.
  • To secure your application against known and new threats with intelligent security that embrace a trustable framework


What are the key benefits of using Azure Front End door --


To scale out and improve performance of your applications and content using Microsoft’s global Cloud CDN and WAN.

  • It can improve your latency for apps by up to 3 times.
  • Accelerating application performance by using Front Door’s anycast  network and split TCP  connections.
  • Terminating SSL offload at the edge and use integrated certificate management .
  • Natively support end-to-end IPv6 connectivity and the HTTP/2 protocol.

Helps in delivering the modern architecture

Modernize your internet first applications on Azure with Cloud Native experiences

  • It integrates with you various azure functionalities and provided Azure IAC tools like - Azure Bicep, ARM templates, CLI and PowerShell.
  • Provides the facility to define  your own custom domain  with flexible domain validation.
  • Load balance and route traffic across origins  and use intelligent health probe  monitoring across apps or content hosted in Azure or anywhere.
  • Integrate with other Azure services such as DNS, Web Apps, Storage and many more for domain and origin management.
  • Log each Front Door request  and failed health probes. It basically provides the ui for seeing the health checks of our application.

Simple and cost-effective

  • Unified static and dynamic delivery offered in a single tier to accelerate and scale your application .
  • Free, autorotation managed SSL certificates  that save time and quickly secure apps and content.
  • Low entry fee and a simplified cost model that reduces billing complexity by having fewer meters needed to plan for.
  • Azure to Front Door integrated egress pricing that removes the separate egress charge from Azure regions to Azure Front Door.

Intelligent secure internet perimeter

  • Secure applications with built-in layer 3-4 DDoS protection, seamlessly attached Web Application Firewall (WAF) , and Azure DNS to protect your domains .
  • Protect your apps from malicious actors with Bot manager rules .
  • Privately connect to your backend behind Azure Front Door with Private Link  and embrace a zero-trust access model.
  • Provide a centralized security experience for your application via Azure Policy and Azure Advisor .

It also provides a rich set of advanced capabilities that enhance the DevOps experience, security posture, and cost-effectiveness for enterprise customers migrating and/or deploying high-performance, scalable, and secure applications on Azure or anywhere.



Now what will happen to existing azure cdn services ..


The existing Azure Front Door and Azure CDN from Microsoft will now be known as Azure Front Door (classic) and Azure CDN from Microsoft (classic) moving forward. Azure Front Door (classic), as well as Azure CDN from Microsoft (classic), will continue to be fully supported and you can continue to use them.  There will be no big change as such , but there will be a slight modification in using Azure front door service as CDN .In the coming time , Azure  zero downtime migrations from Azure Front Door (classic) and Azure CDN from Microsoft (classic) to Azure Front Door Standard and Premium.



To summarise it up -


Azure Front Door offers dynamic site acceleration (DSA ) as well as global load balancing with near real-time failover. For enterprises that have a global reach, the performance of their web applications is greatly impacted by the proximity of the consumer.


For a better and more consistent experience, enterprises may use content delivery networks (CDNs ) with several distribution points and deliver content to consumers rapidly because of optimized connections and proximity.


Azure Front Door leverages the anycast protocol that goes beyond providing traditional CDN capabilities and offers advanced security capabilities including DDoS attack prevention.

The infrastructure for this globally distributed multi-tenant service is shared across all its customers.

1 Reply


Hello! You've posted your question in the Tech Community Discussion space, which is intended for discussion around the Tech Community website itself, not content around products and services such as Azure. I'm moving your question to the Azure space - please post Azure content here in the future.