Hello @gaur ,
Welcome to Microsoft Q&A Platform. Thank you for reaching out & hope you are doing well.
You can choose HTTP, HTTPS, or TCP as the protocol that Traffic Manager uses when probing your endpoint to check its health.
When the monitoring protocol is set as HTTP or HTTPS, the Traffic Manager probing agent makes a GET request to the endpoint using the protocol, port, and relative path given. An endpoint is considered healthy if probing agent receives a 200-OK response, or any of the responses configured in the Expected status code *ranges.
When the monitoring protocol is TCP, the Traffic Manager probing agent creates a TCP connection request using the port specified. If the endpoint responds to the request with a response to establish the connection, that health check is marked as a success.
So your endpoint monitoring for VPN will be:
- Click Configuration.
- Select TCP from the Protocol drop-down list.
- Enter 443 in the Port field.
- Update any additional settings, such as DNS TTL, probing interval, tolerated number of failures, and probe timeout, as required.
- Click Save.
And for SFTP will be:
- Click Configuration.
- Select TCP from the Protocol drop-down list.
- Enter 22 in the Port field.
- Update any additional settings, such as DNS TTL, probing interval, tolerated number of failures, and probe timeout, as required.
- Click Save.
To add VPN/SFTP endpoints to the Traffic Manager profile:
- Click Endpoints.
- Click Add.
- Select External Endpoint from the Type drop-down list.
- Enter a descriptive name for the endpoint.
- Enter the Fully Qualified Domain Name (FQDN) or the IP address of your VPN server or SFTP server.
- Select a geography from the Location drop-down list.
- Click OK.
References :
https://learn.microsoft.com/en-us/azure/traffic-manager/traffic-manager-endpoint-types#external-endpoints
https://learn.microsoft.com/en-us/azure/traffic-manager/traffic-manager-monitoring
https://learn.microsoft.com/en-us/azure/traffic-manager/traffic-manager-how-it-works
https://directaccess.richardhicks.com/2018/07/30/always-on-vpn-multisite-with-azure-traffic-manager/
To setup alerting through email in case of any failover, you would need to create metric alerts using Azure Monitor following below articles:
https://learn.microsoft.com/en-us/azure/traffic-manager/traffic-manager-metrics-alerts#alerts-on-traffic-manager-metrics
https://learn.microsoft.com/en-us/azure/azure-monitor/alerts/alerts-metric
Kindly let us know if the above helps or you need further assistance on this issue.
----------------------------------------------------------------------------------------------------------------
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.