Advice on what services to use in my scenario

My2ndLovE 40 Reputation points
2023-07-09T13:42:56.25+00:00

I'm seeking advice on my planned setup for a web application:

  • I need to host a .Net Core backend (App Service + Azure SQL Database)
  • Handling multiple HTML pages that retrieve data from the backend through API calls (Storage Account, Blob)
  • Each HTML page will have its own domain name (Storage Account, Custom Domain)
  • The expected traffic is around 10,000 requests per day (App Service, Basic Tier + Azure SQL Database, Single DB-DTU-Standard Tier)
  • The client has previously faced DDOS attacks, so I need to have a plan to mitigate DDOS attacks (Need advice)

Can anyone provide feedback on the plan and suggest any better solutions, especially regarding strategies to prevent DDOS attacks?

Azure SQL Database
Azure DDos Protection
Azure DDos Protection
An Azure service that provides defense against distributed denial-of-service (DDoS) attacks.
63 questions
Azure Blob Storage
Azure Blob Storage
An Azure service that stores unstructured data in the cloud as blobs.
2,436 questions
Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
6,914 questions
Accepted answer
  1. Ben Gimblett 3,410 Reputation points Microsoft Employee
    2023-07-10T09:15:36.9966667+00:00

    To the DDoS Part of the question , from a Microsoft/first-party perspective, consider Az Front Door + WAF and see the L7/App DDoS Protection page here. Front door is by it's design (edge PaaS service) highly elastic. Ensure that you lock down access between front door and any web app or API origin using either private link (for premium) or through App Service IP ACLs and front door id header check. As explained here.

    Front door will also be useful from an edge caching perspective , and in general can provide better performance where the clients to your app are widely distributed.

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest