Update: Microsoft will be moving away from UserVoice sites on a product-by-product basis throughout the 2021 calendar year. We will leverage 1st party solutions for customer feedback. Learn more here.

Networking

The Networking forum covers all aspects of Networking in Azure, including endpoints, load-balancing, network security, DNS, Traffic Manager, virtual networks, and external connectivity.

Virtual Network:

  • Service overview

  • Technical documentation

  • Pricing details

  • Traffic Manager:

  • Service overview

  • Technical documentation

  • Pricing details

  • Network Watcher:

  • Service overview

  • Technical documentation

  • Pricing details

  • If you have any feedback on any aspect of Azure relating to Networking, we’d love to hear it.

    • Hot ideas
    • Top ideas
    • New ideas
    • My feedback
    1. Merge feedback requests for Application Gateway with Private IP ONLY

      Hi,

      I've found up to 3 requests that are related to the same, support for AG with a Private IP ONLY.

      https://feedback.azure.com/forums/217313-networking/suggestions/38936950-fully-private-app-gateway-v2

      https://feedback.azure.com/forums/217313-networking/suggestions/38936947-fully-private-app-gateway-v2

      https://feedback.azure.com/forums/217313-networking/suggestions/36487030-pure-internal-standard-v2-application-gateway

      If you merge all of them, they sum more than 200 votes, which is a nice number to start looking into this seriously. We have a customer who discarted AG only because of this (They don't want to expose the AG at all, eventhough the Public IP address wouldn't be used)

      Regards,

      3 votes
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    2. Application Gateway Redirection 308 Permanent Redirect Not Implemented

      According to Documentation available under https://docs.microsoft.com/en-us/azure/application-gateway/redirect-overview, currently Application Gateway does not support 308 Permanent Redirect Methods defined in RFC7538 when doing redirects.
      This can lead to problems with some browsers when doing request, most problems arise when a POST Request is sent to the HTTP Endpoint and it redirects to the HTTPS Endpoint but the Method changes to a GET.

      5 votes
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    3. Application Gateway Health Check DNS Retry

      We were told by support that if the Application Gateway Health Check DNS request fails (the DNS entry is not found) the Application gateway will not try a lookup again until there is a config change. We have a race condition when standing up new apps that sometimes the health check happens before the DNS Entry can be resolved which causes the site to stay in an 'unknown' state forever until the next config change.
      We would love to see some kind of retry logic around DNS lookups as DNS requests fail sometimes. It seems like a bad idea to…

      3 votes
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    4. Move Application Gateway to Another Resource Group

      Please remove Application Gateway limitation move to another RG. It can be applied use case like give another team or person at another RG at one subscription without recreate the Application Gateway. Thank You.

      6 votes
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    5. WAF disable OWASP rule for specific request elements

      Hello Team,

      We have needs to disable OWASP rule for specific request element and keep OWASP rule monitor other request elements.

      Thanks!

      3 votes
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    6. Multiple site hosting with AAD easyauth enabled

      We need to have an easy-to-configure flow for hosting multiple sites/apps with AAD easyauth enabled under the same custom domain. e.g.
      https://contoso.com/myApp1 --> https://myApp1.azurewebsites.net, and https://contoso.com/myApp2 --> https://myApp2.azurewebsites.net
      The goal is to have both apps working and their authentication flows and redirects not break.

      3 votes
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    7. Correct processing of Scale Set certificates

      If Scale Set is set as backend, and certificates are issued to each of Scale Set VMs individually, then there will be an error in Application Gateway: "The Common Name (CN) of the backend certificate does not match the host header of the probe." because App Gateway will not use valid FQDN as hostname when querying those VMs.

      1 vote
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    8. Application Gateway X-Forwarded-For IP:port is malformed

      Possibly this can be resolved by settings only; if so needs better documentation.

      X-Forwarded-For is only supposed to have IP address only (no ports). Our parser choked. In looking to improve the parser we very quickly discovered that as specified it causes a parse ambiguity in IPv6. That is, appending :port to an existing IPv6 address spelled with :: results in another valid IPv6 address. It would have worked if it was [IPv6]:port which is even more broken as compared to what the defacto standard is but is at least unambiguous.

      Needs doc improvement and possibly code improvement. Or maybe…

      3 votes
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      1 comment  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    9. We can not see any error when we delete permission for AppGW from KeyVault.

      When I deleted a permission from KeyVault to get Secret, We could not see any errors. It's very confusion. I can not identify the reason why AppGW is failed status. I hope we can see error about KeyVault side configuration.

      1 vote
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    10. Application Gateway needs load balancing methods

      Currently it seems Application Gateway only allows a round robin of all servers in the pool - there's no way to change this.
      Having a weighting of how many to each server, or picking the first of a list?

      For an example scenario - Imagine two servers A and B and in general you want server A to handle all urls /projectA/... and server B /projectB/... for efficiency reasons. However both servers are able to serve up both sites if needed. You could have 2 pools, one with server A first and one with server B first on a "first-server"…

      1 vote
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    11. I want to set HTTP keep-alive ON / OFF in the Application Gateway settings

      When the Application Gateway is in the process of forwarding an HTTP request to the backend, Connection Header Value in forwarding HTTP request is "keep-alive".
      Therefore, to disable HTTP keep-alive in the process of forwarding an HTTP request to the backend, it must be set in the backend settings.

      But Some customers using Application Gateway may also have a requirement that the backend settings can't be set.
      Even for such customers, it would be more convenient to be able to disable keep-alive in Application Gateway settings.

      9 votes
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    12. Application Gateway: override backend path

      Currently App Gateway only allows to replace the backend path of HttpSetting with absolute string using the "override backend path" property.

      This property does not allow replace the backend path with empty string. Please add this feature.

      Alternatively, override backend path can support regex.

      Scenario:
      https://stackoverflow.com/questions/66455060/set-override-backend-path-to-empty-string-in-app-g-w-ingress-controller

      1 vote
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    13. Same-listener URL redirect

      It would be very handy to have a way to do a same-listener redirect to a URL path.

      Example, my webserver is configured with an application at /path1. There could also be a second web application with a different FQDN at /path2 When I hit https://site1.contoso.com, it should be able to redirect to https://site1.contoso.com/path1. Likewise, https://site2.contoso.com should be able to immediately redirect to https://site2.contoso.com/path2.
      As-is, I need to have two listeners per application -- The first listener is listening for site1.contoso.com on port 443 then performs a redirect to site1.contoso.com:444/path1. Looks very messy and unprofessional in the…

      3 votes
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    14. Goal to Application Gateway v2 SLA 99.99%

      Our customer who is a system integrator, reported us that one of their customers showed 99.99 % SLA of AWS when they performed presentation of Azure AppGw v2 solution.

      I would like to suggest Azure AppGw v2 need to reach to the same SLA point 99.99 %, so we can help our customers promote AppGw solutions with strong confidence.

      1 vote
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    15. Provide advanced planned maintenance notifications for Application Gateway

      Hi Team,

      Sometimes if customer runs only one AppGw instance, if maintenance happens such as host environment upgrade or AppGw instance self, the application will totally down.

      We understood to have at least 2 instances for high availability. Due to business requirement, we need to send the report to our management team, is it possible to add an advanced planned maintenance notification feature for AppGw?

      3 votes
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    16. Is there any way to route internet traffic to backend pool based on query string value?

      Does any azure service provide query string based routing to backend server? I can find there is option in GCP and AWS. But same is available to Azure? I have tried Application Gateway but this is limited to path based routing also don't find the way in Front Door service.

      3 votes
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    17. querystring values based routing

      I have requirement based on query string value the traffic should rout to backend server. The rewrite URL methods works but response shows modified URL to the client browser.
      example: request URL = https://<server>/?id=1 should return the same to client after rewrite the URL in application gateway.

      1 vote
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    18. App Gw same port for both public facing and private facing

      Hi team,

      Please kindly consider using the same port for both public facing and private facing.

      Thanks!

      1 vote
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    19. ProhibitedTargets support on AGIC add-on

      Hello Team,

      Our customer has need to deploy shared App Gw via AGIC add-on instead of HELM.
      However, in the doc below, ProhibitedTargets was not supported by AGIC add-on.
      https://docs.microsoft.com/en-us/azure/application-gateway/ingress-controller-overview#difference-between-helm-deployment-and-aks-add-on

      Can you please consider add this feature on AGIC Add-on? Thanks!

      7 votes
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    20. Application Gateway Session Affinity Inflexible

      We are finding the limitations of the application gateway toward meeting our business needs:


      1. Cannot mirror Layer-4 routing (packet passthru to backend pool), similar to the Standard Load Balancer.

      2. Cannot perform session affinity based on custom rules, similar to F5 iRule:

      when HTTP_REQUEST {
      if {[HTTP::header X-Forwarded-For] != ""} then {

        persist uie [lindex [ split [lindex [HTTP::header values X-Forwarded-For] 0] &quot;,&quot; ] 0]
      

      } else {

        persist uie [IP::client_addr]
      

      }
      }

      We like to see if these requirements can be accommodated as feature release.

      1 vote
      Vote

      We're glad you're here

      Please sign in to leave feedback

      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Application Gateway  ·  Flag idea as inappropriate…  ·  Admin →
    ← Previous 1 3 4 5 12 13
    • Don't see your idea?

    Feedback and Knowledge Base