Security Aspects of Application Gateway
ฝัง
- เผยแพร่เมื่อ 22 ส.ค. 2024
- • Application Gateway La...
Deep Dive App Gateway playlist
pachehra.blogs...
/ arun-pachehra
• Terraform with Azure :...
• Terraform with Azure :...
• Terraform with Azure :...
• Terraform with Azure ...
• Video
• Video
• AZ-300 Introductory Video
• AZ-300 Configure Diagn...
• AZ-300 Create Action G...
• AZ-300 Alerts and base...
My name is Arun Pachehra and i am an IT Professional & a fitness enthusiast. Its been more than 16 years working with various technologies and now i am planning to share with you all. As per plan i am going to publish the entire Az 303 series first and if things would go as planned then a lot of stuff would come your way including Q&A , Production issues and various interesting stuff.
Hi @PachehraTalks. Thanks and appreciate for your share. I am using Azure Web App as a backend for Azure App Gateway, by default Web App runs over HTTPS, so question is do we need to take care anything for encrypted traffic between App Gateway to Web App after TLS termination?
Ensure that your Azure Web App is configured to accept HTTPS connections. Even though Web Apps are secure by default (enforced HTTPS), explicitly verify that HTTPS is enabled and properly configured.
Second, In the Application Gateway’s backend HTTP settings, you need to set up the use of HTTPS protocol for the backend pool. This setting ensures that traffic from the Application Gateway to your Azure Web App is encrypted.
Depending on your security requirements, consider using end-to-end SSL mode, where the SSL connection is not terminated at the Application Gateway but passed through to the backend. This scenario uses the Application Gateway primarily for Layer 7 routing purposes without decrypting the traffic.