SOLVED

How to create reverse proxy with backend is url on-premise ?

%3CLINGO-SUB%20id%3D%22lingo-sub-338544%22%20slang%3D%22en-US%22%3EHow%20to%20create%20reverse%20proxy%20with%20backend%20is%20url%20on-premise%20%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-338544%22%20slang%3D%22en-US%22%3E%3CP%3EHello%3C%2FP%3E%3CP%3E%26nbsp%3B%20%26nbsp%3B%20%26nbsp%3Bi%20has%20created%20VPN%20site%20to%20site%20as%20below%20and%20it%20can%20connected%20ok%3C%2FP%3E%3CP%3E%26nbsp%3B%20%26nbsp%3B%20%26nbsp%3B%20On-premise%20has%20url%20%3CA%20href%3D%22https%3A%2F%2F172.31.0.3%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2F172.31.0.3%3C%2FA%3E%20and%20vpn%20site%20to%20site%20-%26gt%3B%20azure%20subnet%20DMZ%2010.251.1.0%2F24%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%20%26nbsp%3B%20%26nbsp%3B%20I%20want%20create%20a%20reverse%20proxy%20in%20subnet%20DMZ%20and%20backend%20is%20server%20172.31.0.3%20with%20port%20is%20443%20.%20So%20i%20can%20create%20application%20gateway%20%3F%20or%20another%20app%20%3F%20please%20any%20one%20suggest%20help%20me%3C%2FP%3E%3CP%3EBest%20regards%2C%3C%2FP%3E%3CP%3EThanks%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-338544%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAzure%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-355850%22%20slang%3D%22en-US%22%3ERe%3A%20How%20to%20create%20reverse%20proxy%20with%20backend%20is%20url%20on-premise%20%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-355850%22%20slang%3D%22en-US%22%3E%3CP%3EThanks%20for%20all%20support%20%2C%20i%20just%20check%20then%20the%20problem%20is%20heath%20check%20failure%20ssl%20after%20that%20i%20export%20public%20key%20from%20certificate%20of%20server%20and%20import%20to%20Http%20setting%20in%20application%20gateway%20then%20now%20it%20is%20working%20normal%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-352348%22%20slang%3D%22en-US%22%3ERe%3A%20How%20to%20create%20reverse%20proxy%20with%20backend%20is%20url%20on-premise%20%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-352348%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F234118%22%20target%3D%22_blank%22%3E%40Tien%20Ngo%20Thanh%3C%2FA%3E%26nbsp%3BYes%20you%20can%20use%20Azure%20application%20gateway%20for%20this.%20Application%20gateway%20works%20at%20Application%20Layer%20(Layer%207)%20and%20can%20act%20as%20a%20reverse%20proxy%20services.%20Application%20gateway%20will%20terminate%20the%20client%20connection%20and%20forward%20the%20request%20to%20back%20endpoints.%20In%20addition%20application%20gateway%20will%20provide%20following%20functionality%3A%3C%2FP%3E%3COL%3E%3CLI%3ESSL%20offloading%26nbsp%3B%20-%20Application%20Gateway%20can%20receive%20request%20on%20https%20and%20route%20that%20to%20internal%20servers%20running%20on%20http.%20You%20can%20also%20configure%20SSL%20protocol%20version%3C%2FLI%3E%3CLI%3E%3CSPAN%3EAnalyze%20traffic%20statistics%3A%20You%20can%20view%20and%20analyze%20Access%20logs%20via%20several%20mechanisms%20such%20as%20Azure%20Log%20Analytics%2C%20Excel%2C%20Power%20BI%20etc.%3C%2FSPAN%3E%3C%2FLI%3E%3CLI%3E%3CSPAN%3EVPN%20tunnels%2FExpress%20route%20and%20VNet%20Peering%20is%26nbsp%3B%3C%2FSPAN%3Esupported%3C%2FLI%3E%3C%2FOL%3E%3CP%3E%3CSPAN%3EThere%20are%20many%20more%20features%20and%20advantages.%20I%20hope%20this%20helps%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E
Highlighted
Regular Contributor

Hello

     i has created VPN site to site as below and it can connected ok

      On-premise has url https://172.31.0.3 and vpn site to site -> azure subnet DMZ 10.251.1.0/24 

      I want create a reverse proxy in subnet DMZ and backend is server 172.31.0.3 with port is 443 . So i can create application gateway ? or another app ? please any one suggest help me

Best regards,

Thanks

2 Replies
Highlighted
Best Response confirmed by Tien Ngo Thanh (Regular Contributor)
Solution

@Tien Ngo Thanh Yes you can use Azure application gateway for this. Application gateway works at Application Layer (Layer 7) and can act as a reverse proxy services. Application gateway will terminate the client connection and forward the request to back endpoints. In addition application gateway will provide following functionality:

  1. SSL offloading  - Application Gateway can receive request on https and route that to internal servers running on http. You can also configure SSL protocol version
  2. Analyze traffic statistics: You can view and analyze Access logs via several mechanisms such as Azure Log Analytics, Excel, Power BI etc.
  3. VPN tunnels/Express route and VNet Peering is supported

There are many more features and advantages. I hope this helps

Highlighted

Thanks for all support , i just check then the problem is heath check failure ssl after that i export public key from certificate of server and import to Http setting in application gateway then now it is working normal