Networking

The Networking forum covers all aspects of Networking in Azure, including endpoints, load-balancing, network security, DNS, Traffic Manager, virtual networks, and external connectivity.

Virtual Network:

  • Service overview

  • Technical documentation

  • Pricing details
  • Traffic Manager:

  • Service overview

  • Technical documentation

  • Pricing details
  • Network Watcher:

  • Service overview

  • Technical documentation

  • Pricing details
  • If you have any feedback on any aspect of Azure relating to Networking, we’d love to hear it.

    • Hot ideas
    • Top ideas
    • New ideas
    • My feedback
    1. Allow ModSecurity Rule Exclusion

      ModSecurity is not really designed to be a plug and play solution. It almost always requires tuning. Without being to enter exclusions for certain files or paths, the only option is to disable the rule entirely, which is self defeating in most cases. An example would be WordPress. ModSecurity will flag certain actions of WordPress core (photo upload to the media gallery using admin or editing a post for example) as bad actions, meaning you either disable the rule entirely and thus the protection, or turn it on and off when you need to do those actions. Neither of those…

      1 vote
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      triaged  ·  0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    2. Sort Application Gateway Rules alphabetically

      My lists of Application Gateway Rules / Listeners and HTTP Settings is growing very fast. I've applied a naming convention but the lists are in random order so it's hard to find the settings which are for the same customer.

      1 vote
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →

      Thanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature backlog and also gives us insight into the potential impact of implementing the suggested feature.

    3. Ability to queue Azure configurations from portal

      In some services it might take quite a while for configurations to apply (for example Application Gateway). It can take up to 30 minutes for certain configuration to be applied and it is not possible to make other configuration change at the same time so it would be nice to have possibility to queue or batch changes somehow.

      1 vote
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    4. Add a way to test the configuration of Application Gateway before update

      When updating an application gateway (example changing to a different backend). It would be useful to be able to test the configuration of the application gateway before saving.

      1 vote
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →

      Thanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature list and also gives us insight into the potential impact of implementing the suggested feature

    5. Delete the listener but rule will be left and invisible

      After delete the listener, the rule still left and you can't see them in the UI. When you create the rule with same name, the request will be denied. You can see the left rules in the resource explorer.

      1 vote
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    6. Application Gateway -- Option to Stop/Start from Azure Portal

      It would be nice if we have the option to Start/Stop the Application Gateway from Azure Portal

      1 vote
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      triaged  ·  0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    7. application gateway listener

      At times it becomes difficult to know what is the type of Listener in Application gateway that is, is it Multi Path or basic.

      It would be great if we can also see the Listener type at the Top

      1 vote
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    8. Azure Application gateway - Allowed concurrent connection

      1) Tier - WAF , SKU Size - medium

      2) Tier - WAF , SKU Size - large

      3) Tier - Standard , SKU Size - small

      4) Tier - Standard , SKU Size - medium

      5) Tier - Standard , SKU Size - large

      Example: If I'm using WAF with Medium SKU and 8 Instances what will be my limit of concurrent connections.

      Thanks,
      Gulab Pasha

      1 vote
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    9. Maximum Internet Traffic supported by Application Gateway . Sometimes there will be a performance test conducted . So it is better to know

      Would be great if there is some information on the maximum traffic supported by Application gateway

      1 vote
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →

      Thanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature list and also gives us insight into the potential impact of implementing the suggested feature

    10. downgrade attack prevention - TLS_FALLBACK_SCSV

      Downgrade attack prevention should be a necessary addition to the Azure Application Gateway.

      All security audits (SSL Labs among others) show this to be a necessary security measure and as such they all downgrade your security compliance if you dont have it.

      1 vote
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      triaged  ·  0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    11. Support URL encryption

      1. URL encryption =contoso.com/dco/c/p/index.jsp?a=value1&b=value2 -> /[encrypted URL]
      2. QUERY encryption =contoso.com/dco/c/p/index.jsp?a=value1&b=value2 -> /dco/c/p/index.jsp?[encrypted query]

      With encryption enabled, the URLs look like the follows:

      https://contoso.com/uEtTrCjpfK6TArw28wkIKR859knsmcdYxxHjBvJZrcCEoEYKhgZDzfwzt2cUhYVR7ggTvZKPFdCnvHSnyyg_tsvOXlx5UwJevvAIMaKtDycZz-fF8Q3Nr3NJV0w$$~UuE

      1 vote
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    12. Fix VPN Gateway and Application Gateway Tags

      Currently, even when tagged, VPN gateways and Application Gateways do not show as a tagged resource under cost analysis or the Power BI cost management pack. Every month we have to let our billing department know where to allocate these costs.

      1 vote
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      1 comment  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    13. Application Gateway - Rule 920300 confusion

      I believe there is confusion around rule
      920300 - Request Missing an Accept Header

      This rule is listed in the docs
      https://docs.microsoft.com/en-us/azure/application-gateway/application-gateway-crs-rulegroups-rules#owasp30

      However, it no longer appears in the portal GUI, it certainly used to

      I have several appgw instances, on all of them but one, it is possible to disable/enable this rule using powershell cmdlets

      On one specific instance I can not disable it using powershell, but I know the rule is being applied as I am getting preventions and detections being logged against it.

      When i try to disable it using powershell I get the error
      Failed to…

      1 vote
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    14. Add support for pointing an Application Gateway backend pools to Traffic Manager profiles

      We'd like to start using URL-based routing for load balancing our web application, but we don't want to lose the auto-failover capabilities of our current TM profiles.

      Ideally, I'd like to point an Application Gateway backend pool to a Traffic Manager Profile (which in turn would point to Azure Web Apps configured in prioritized failover).

      Currently, there's no easy way to do this; if all pool members become unhealthy, you have to failover at the application gateway level to another application gateway. This requires a lot of unnecessarily redundant (and expensive) infrastructure for simply configuring failover for a backend pool…

      1 vote
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      1 comment  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    15. Application Gateway needs to be faster and capable of greater transaction throughput

      Currently, Application Gateway is the only service on Azure that supports offloading certificates for SSL, but Application Gateway can take a long time to provision and update with changes, and is unable to handle the high stress levels imposed by some apps. Application Gateway should be quick to provision and update after configuration changes, and it should be able to handle large numbers of requests per minute (e.g., 6,000 per minute).

      1 vote
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →

      We recently introduced changes which make any updates to Gateway complete in less than a minute. We are also working on reducing provisioning time. Regarding SSL offload performance – you should be able to increase the number of instances to scale out and handle increased load. 6000 new SSL connections per minute is not a lot and should be able to be served by a single Large instance. Please open a support ticket if you are seeing issues with performance at this scale.

    16. Proxy timeout

      Possibility to customize the Application Proxy timeout. Default and long is not flexible enough.

      0 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    17. Allow Application Gateway's public IP to be used as CNAME alias

      Currently Traffic Manager and Public IP are available resources for selection in a dropdown for CNAME aliases. I would like to also select Application Gateway which has a public IP address associated with it.

      0 votes
      Vote
      Sign in
      (thinking…)
      Sign in with: Microsoft
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    1 2 3 4 5 6 8 Next →
    • Don't see your idea?

    Feedback and Knowledge Base