Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
8,941 questions
How to resolve intermittent 503 errors with high CPU utilization in Azure App Service during peak traffic spikes while maintaining SLA?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(51.2, 91%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJK%3C/text%3E%3C/svg%3E)
Joseph Kuria Njiraini
0
Reputation points
We have a .NET Core 6 API hosted on Azure App Service (Premium P3v2 tier) that experiences intermittent HTTP 503 errors during unpredictable traffic spikes (10x baseline). Application Insights shows CPU saturation (~95%) coinciding with the errors, but auto-scaling (configured on CPU > 70%) often lags behind demand.
Current Configuration:
- Instances: 3 (min), 10 (max)
- Scale-out: CPU > 70% for 5 minutes, +1 instance
- ARR Affinity: Disabled
- Health Check: /status (200 OK endpoint)
- Database: Azure SQL (DTU 100, no throttling observed)
Attempted Fixes (No Success):
- Pre-warmed instances via Always On + startup tasks.
- Adjusted scale-out rules to trigger at 60% CPU with 3-minute cooldown (resulted in over-provisioning without eliminating 503s).
- Optimized code (reduced EF Core queries, added caching via Redis).
Hard Requirements:
- Must maintain 99.95% SLA.
- Cannot use ASE (App Service Environment) due to cost constraints.
Question:
What’s a deterministic strategy to eliminate 503s under these conditions? Are there hidden Azure quotas (e.g., SNAT, VMSS burst limits) or advanced scaling patterns (predictive, queue-based) that could resolve this? Provide low-latency solutions, not theoretical guidance.
View Markdown
# Intermittent 503s in Azure App Service During Traffic Spikes
Problem:
- 503 errors during sudden 10x traffic spikes.
- CPU hits ~95% before scaling kicks in (P3v2 tier).
- Auto-scaling delay causes SLA risk.
Constraints:
- No ASE, must stay cost-efficient.
- 99.95% SLA non-negotiable.
Need:
- Actionable fixes (e.g., ARM template tweaks, scale rule hacks).
- Deep Azure infra insights (throttling, SNAT, VMSS quirks).
Azure App Service
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(73.60000000000001, 69%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESN%3C/text%3E%3C/svg%3E)
Siva Nair 2,420 Reputation points Microsoft External Staff Moderator2025-05-30T23:37:46.17+00:00 Reaching you out in private chat to deep troubleshoot , Please check
Below are some Low-Latency Strategy-
1)Adopt Queue-Based Load Leveling (Burst Protection)Queue-Based Load Leveling pattern – Azure Architecture Center
Introduce a queue-based ingestion layer (e.g., Azure Service Bus or Azure Queue Storage) in front of your API for burstable endpoints.
- API Layer: Accepts requests quickly, enqueues them.
- Worker Role (App Service or Azure Container Apps): Dequeues and processes.
- Benefits:
- Smooths out spikes.
- Decouples request rate from processing rate.
- Prevents CPU saturation.
- Decouples request rate from processing rate.
- Smooths out spikes.
Use Azure Functions with Premium Plan or Azure Container Apps with KEDA for dynamic worker scaling.
2)Pre-Provisioned Hot Standby InstancesAutomatic scaling in Azure App Service & Autoscaling Guidance – Azure Architecture Center
Since you're on Premium P3v2:
- Manually scale to 6–7 instances during known peak hours (e.g., via scheduled autoscale).
- Keep 3–4 instances always hot to absorb sudden spikes.
- Use Azure Monitor Scheduled Autoscale to scale up before expected load.
3)Switch to Predictive Scaling (via Azure Monitor + Logic Apps)Predictive autoscale – Azure Monitor & Autoscale in Azure Monitor
Reactive scaling is too slow. Instead:
- Use Azure Monitor metrics (e.g., request count, CPU trend) to predict spikes.
- Trigger Logic App or Azure Automation Runbook to scale out before CPU hits 70%.
- Use custom metrics like Redis cache hit ratio or queue length as early indicators.
4)Enable Per-App SNAT Ports (Hidden Quota)Troubleshoot outbound connection errors – Azure App Service & Troubleshoot Azure NAT Gateway connectivity
App Services share SNAT ports per instance. During spikes, you may hit SNAT exhaustion.
- Enable VNET Integration + NAT Gateway to get dedicated outbound IPs and more SNAT ports.
- Especially important if your app makes many outbound calls (e.g., to Azure SQL, APIs).
5)Use Azure Front Door or API Management with CachingCaching with Azure Front Door& Configure caching – Azure Front Door
Introduce Azure Front Door or APIM with response caching for GET-heavy endpoints.
- Reduces load on backend.
- Provides global edge caching.
- Can absorb spikes without hitting App Service.
6)Optimize App Service Plan Placement Troubleshoot with Diagnostics – Azure App Service
Check if your App Service Plan is in a crowded stamp (shared underlying VM pool).
- Use App Service Diagnostics → “App Service Plan Density” to check.
- If crowded, scale to a new App Service Plan in the same region to get better isolation.
7)Use Azure Container Apps with KEDA (Optional Migration)Scaling in Azure Container Apps & Scale Dapr apps with KEDA scalers
If App Service continues to bottleneck:
- Migrate to Azure Container Apps with KEDA-based scaling.
- Scales on custom metrics (queue length, CPU, HTTP concurrency).
- Cold start is faster than App Service.
Hope this helps
Sign in to comment
Sign in to answer