Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
1,076 questions
0 answers
Vulnerabilities on application Gateway Treck TCP/IP stack multiple vulnerabilities. (Ripple20)
recently Vulnerabilities on the application Gateway were discovered by a Vulnerability assessment tool. "Treck TCP/IP stack multiple vulnerabilities. (Ripple20)" does Microsoft have any support article or support team on this?
asked 2024-09-26T04:00:51.8933333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(192, 26%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPR%3C/text%3E%3C/svg%3E)
Pravendra Rajput
51
Reputation points
edited a comment 2024-10-08T09:56:21.85+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 81%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESP%3C/text%3E%3C/svg%3E)
Sai Prasanna Sinde (Quadrant Resource LLC)
680
Reputation points Microsoft Vendor
1 answer
Retrieving Azure Application Logs Older Than 90 Days
What steps can be taken to access Azure application logs that are older than 90 days without altering the existing retention policy?
asked 2024-10-07T10:56:02.1866667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 88%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAD%3C/text%3E%3C/svg%3E)
Avinash Dondeti (TATA CONSULTANCY SERVICES LTD)
0
Reputation points Microsoft Vendor
commented 2024-10-08T03:54:33.84+00:00
SUNOJ KUMAR YELURU
14,376
Reputation points MVP
3 answers
One of the answers was accepted by the question author.
Application gateway listener error when trying to use key vault certificate using managed identity and RBAC
Hi, I'm trying to setup a listener in application gateway to use a certificate from keyvault using managed identity. But every time whne I choose in portal the managed identity and then select the key vault from the dropdown menu I get this error: …
asked 2021-10-08T06:19:49.1+00:00
Martin Cangar
31
Reputation points
commented 2024-10-07T20:20:03.8566667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 46%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDU%3C/text%3E%3C/svg%3E)
Dhruvil Upadhyay
0
Reputation points
1 answer
One of the answers was accepted by the question author.
How can a storage account blob be created as a custom error page on an Application Gateway Listener if the customer does not want the blob to be publicly accessible?
I am currently working with a customer that wants to use the Storage Account Blob as a custom error page on a Listener in Application Gateway. The customer does not want the blob publicly accessible. How can listener gain access to the blob?
asked 2024-10-07T15:14:02.6+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(57.599999999999994, 97%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHF%3C/text%3E%3C/svg%3E)
Handy, Frederick
40
Reputation points
accepted 2024-10-07T18:35:28.63+00:00
Handy, Frederick
40
Reputation points
2 answers
Azure support for TLS 1.0 and TLS 1.1 will end by 31 October 2024
I have an Azure App Gateway that requires TLS 1.0 to be enabled for legacy applications, will client apps be able to connect to the App Gateway after 10/31/24? Does this scenario apply to Azure web apps, where the legacy client is connecting with TLS…
asked 2024-09-05T19:21:49.4033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(169.60000000000002, 49%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJG%3C/text%3E%3C/svg%3E)
Jewell, Gary
5
Reputation points
commented 2024-10-04T02:24:24.74+00:00
Sai Prasanna Sinde (Quadrant Resource LLC)
680
Reputation points Microsoft Vendor
1 answer
Hello, working on exposing am internal load balancer through an app gw v2. My listener continues to default to the wrong certificate, so when I open the host name on the browser it depicts the wrong certificate.
-Double check settings as in hostname, correct wildcard attached to our listener. -Error: The Common Name of the leaf certificate presented by the backend server does not match the Probe or Backend Setting hostname of the application gateway. -When…
asked 2024-07-18T01:15:08.62+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 72%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EER%3C/text%3E%3C/svg%3E)
EDWARD REYESARROYO
25
Reputation points
commented 2024-10-03T20:05:13.8666667+00:00
EDWARD REYESARROYO
25
Reputation points
1 answer
One of the answers was accepted by the question author.
Application gateway with a custom domain name
I have checked this https://stackoverflow.com/questions/37752482/custom-domain-for-azure-application-gateway. I just want to know if it is still not supported to create an application gateway with a custom domain. Is creating a CName is the only way?
asked 2021-04-30T19:52:00.523+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 25%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKM%3C/text%3E%3C/svg%3E)
Kei Moon
151
Reputation points
edited a comment 2024-10-03T18:44:25.61+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(108.80000000000001, 53%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBR%3C/text%3E%3C/svg%3E)
Bala Reddy
0
Reputation points
1 answer
Application gateway stop and start ends up with an error.
Hi, i stopped the application gateway via cloud shell it works fine but when start again it takes longer time and when again tried to start it shows an error. PS /home/kaushal> Start-AzApplicationGateway -ApplicationGateway $appGateway …
asked 2024-09-27T04:41:23.76+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 52%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKP%3C/text%3E%3C/svg%3E)
kaushal parab
26
Reputation points
commented 2024-10-02T02:32:44.16+00:00
kaushal parab
26
Reputation points
1 answer
"502 Bad Gateway" on Application Gateway when "Override with new host name" is disabled, redirect issues when enabled
Hello, I am creating an Application Gateway to forward traffic to an Azure App Service with the domain: aladwaa360.azurewebsites.net. However, I’m facing two issues with the host name override feature: 502 Bad Gateway with host name override disabled:…
asked 2024-09-28T15:49:09.3566667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 95%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EME%3C/text%3E%3C/svg%3E)
Muhammad Elzedy
0
Reputation points
answered 2024-09-30T05:46:27.1133333+00:00
KapilAnanth-MSFT
46,016
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
Local Error: DNSResolution in application gateway when backend is an internal container app
I want to use Azure Application Gateway to protect an internal container app in same vnet, but the situation is quite confusing. Here are the specific configurations: Azure internal container app in vnet test-vnet, ingress restricted to vnet, listening…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(6.4, 95%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWA%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Can't see VMSS from Application gateway in different resource group
How can I make my Application Gateway from one resource group communicate with the Virtual machine scale set of another resource group in the same subscription? I have established Network Peering between the two virtual networks, but the Backend pools of…
asked 2024-09-20T08:38:59.32+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(89.60000000000001, 32%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKI%3C/text%3E%3C/svg%3E)
Kristian Iliev
20
Reputation points
accepted 2024-09-27T14:11:19.5433333+00:00
Kristian Iliev
20
Reputation points
1 answer
One of the answers was accepted by the question author.
How will end of TLS 1.0/1.1 support affect Application Gateway to Backend Communication?
This question is related to the EOL of TLS 1.0 and 1.1 support per the following announcement https://zcusa.951200.xyz/en-us/lifecycle/announcements/tls-support-ending-10-31-2024 Basically we have a web server behind and Application Gateway running on…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 97%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ET%3C/text%3E%3C/svg%3E)
1 answer
How does Azure AppGateway connection draining work with cookie-based affinity?
We are looking to deploy an Azure scale set in combination with an AppGateway to take advantage of the scale in/out capabilities for our application VM's. The application does require session affinity so we would enable the cookie-based load balancing…
asked 2024-09-24T19:03:40.7166667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 13%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ET%3C/text%3E%3C/svg%3E)
twilson
20
Reputation points
commented 2024-09-27T05:28:31.8666667+00:00
KapilAnanth-MSFT
46,016
Reputation points Microsoft Employee
1 answer
How to remove WAF policy safely.We have an AKAMAI device before the App GW and do not need WAF capability anymore.What is the safest way to do so.
How to remove WAF policy safely or disassociate WAF policy . We have an AKAMAI device before the App GW in our environment hence we do not need WAF capability anymore. What is the safest way to do so. Also can I do it via portal and if I am doing it via…
asked 2023-03-21T05:27:06.58+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(176, 43%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Samar Masood Khan
20
Reputation points
commented 2024-09-26T11:27:17.2633333+00:00
KapilAnanth-MSFT
46,016
Reputation points Microsoft Employee
3 answers
One of the answers was accepted by the question author.
403 Forbidden Error When Accessing Specific URL via Custom Domain on Azure App Gateway
I am currently facing an issue with an Azure application gateway setup and would greatly appreciate any insights or suggestions. Issue Description: I have set up an application gateway to manage traffic for an Azure App Service, and we have associated a…
asked 2023-08-26T17:23:29.33+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 40%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
sindhu sneha
150
Reputation points
commented 2024-09-26T08:47:17.9933333+00:00
KapilAnanth-MSFT
46,016
Reputation points Microsoft Employee
1 answer
I am getting request such as "~^.*\.mywebsite\.com$" on my azure application gateway. This causes "ERRORINFO_REQUEST_URI_INVALID" error. How do i prevent invalid requests at the Azure WAF2 level?
Recently, we are getting a lot of requests such as "~^.*.mywebsite.com$" and it gets logged in the Application Gateway as "ERRORINFO_REQUEST_URI_INVALID". We would like to prevent such wildcard requests at the Web Application…
asked 2024-09-25T02:45:36.1433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 30%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPS%3C/text%3E%3C/svg%3E)
Prasanna Srinivasan
0
Reputation points
answered 2024-09-25T10:50:47.21+00:00
KapilAnanth-MSFT
46,016
Reputation points Microsoft Employee
2 answers
Roadmap for Private Application Gateway Preview of Network Isolation feature to be Generally Available
Hi, folks! Is there an estimated timeline for the Network Isolation feature of Application Gateway v2 to be made Generally Available? Not sure if such a thing exists, but my search-fu may not be strong enough. Thank you for your time and help!
asked 2023-10-20T18:07:36.79+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(192, 14.000000000000002%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETS%3C/text%3E%3C/svg%3E)
Talafuse, Scott
5
Reputation points
commented 2024-09-24T11:31:10.2966667+00:00
Patrik Bergström
5
Reputation points
1 answer
One of the answers was accepted by the question author.
Facing Issue while creating Tcp Backend setting through Azure CLI.
Dear Team, I am encountering an issue while attempting to create a TCP listener in the Azure Application Gateway using the Azure CLI. According to the Azure documentation, TCP listener creation is supported; however, I am receiving an error message…
asked 2024-09-20T12:31:28.3166667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(9.6, 59%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
Rohith
40
Reputation points
commented 2024-09-23T19:04:18.2633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 59%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
ChaitanyaNaykodi-MSFT
26,201
Reputation points Microsoft Employee
0 answers
Authentication with mTLS - force the browser to ask for a certifacte again after one failed attempt
We are using Application Gatway (appgw) with mTLS which requires a valid client certificate. On the users end there is a smartcard with the valid certifacte and a browser (mostly Edge). The user needs to authenticate him/herself with it. We use Keycloak…
asked 2024-09-13T07:18:09.8633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 41%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKK%3C/text%3E%3C/svg%3E)
Klaus Kiiskinen
0
Reputation points
commented 2024-09-23T13:26:58.5333333+00:00
Klaus Kiiskinen
0
Reputation points
1 answer
going with the application gateway in fornt of azure firewall does it lose the benefit of l7 load balancing
I have an Azure firewall in a hub and spoke architecture, and one of the spokes contains my web servers, for HTTPS filtering I have an application gateway with the WAF feature and l7 load balancing. I have a requirement to keep centralized security…
asked 2024-09-23T06:26:52.93+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(80, 85%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMN%3C/text%3E%3C/svg%3E)
Mohammad Nemer
0
Reputation points
answered 2024-09-23T10:20:18.8833333+00:00
KapilAnanth-MSFT
46,016
Reputation points Microsoft Employee