This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(67.2, 67%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESC%3C/text%3E%3C/svg%3E)
As part of our Azure stack, we are hosting our commercial website on a Debian instance in a specific resource group.
We have pretty strong security on the site itself, via the aios plugin. We do get regular brute force attempts on the website, with varying intensity - the plug-in does a good job of blocking them, but it’s clearly placing unnecessary load on our server.
We’re wondering if there's an extra layer of security we could add at network / server level to filter out the majority of that bot traffic. We had something similar at the site’s previous Cloud host Cloudways, which was extremely effective - I’m sure there is something similar on Azure but would appreciate being pointed in the right direction.
We could also do with installing a Varnish cache on that box to improve performance and efficiency. If you have any guidance on the best way to do that, we’d be grateful.
An Azure service that provides a cloud content delivery network with threat protection.
An Azure service that provides protection for web apps.
Azure Front door will be the answer to your porblems enable WAF with Bot protection will help you strengthen your security posture.
Please "Accept as answer" If this helps :)