Azure Frontdoor Implementation for network and application security best practices.

Question

Hi,

I would like to implement an azure front door for azure app services for application security and to restrict the application access over the internet by following the best security practices within azure.

please also advise if my approach is right here choosing Azure front door vs public and private VNets.

thank you
Harsha

Answer

Hey Harsha,

azure front door is definitely a great fit for your use case, we recently implemented here is some documentation from Microsoft cloud best practices for your reference. in addition to front door you might need load balancer in your use case.

https://learn.microsoft.com/en-us/azure/frontdoor/front-door-overview
https://azure.microsoft.com/en-us/resources/templates/front-door-premium-app-service-private-link/
https://learn.microsoft.com/en-us/azure/architecture/guide/technology-choices/load-balancing-overview?toc=%2Fazure%2Ffrontdoor%2Fstandard-premium%2Ftoc.json

let me know if this helps! if you have any specific questions related to integral parts in azure front door I m more than happy to help!

Answer

Hi @Sriharsha Chadalawada ,

Welcome to the Microsoft Q&A Platform. Thank you for reaching out & I hope you are doing well.
I understand that you would like to understand more about AFD best practices.

The following documents may come handy

To block certain IPs , you can make use of WAF Policy.
Refer : https://learn.microsoft.com/en-us/azure/web-application-firewall/afds/waf-front-door-configure-ip-restriction

Cheers,
Kapil

----------------------------------------------------------------------------------------------------------------

Please don’t forget to close the thread by clicking "Accept the answer" wherever the information provided helps you, as this can be beneficial to other community members.

Azure Frontdoor Implementation for network and application security best practices.

2 answers