Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
1,213 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 71%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGP%3C/text%3E%3C/svg%3E)
Hello Hanh Trinh
Session persistence is breaking due to Cloudflare’s changing source IP addresses. Since Azure Load Balancer supports only Client IP-based session persistence, but Cloudflare masks client IPs, you're facing session drops.
Possible Solutions to Maintain Session Persistence:
- Configure Azure Application Gateway (Instead of ALB)
Azure Application Gateway supports cookie-based session affinity, which ensures user sessions remain intact even if the source IP changes.
Enable session affinity cookies by setting Affinity Mode: Enabled.
- Use Cloudflare’s Header for Originating IP
Cloudflare provides headers like CF-Connecting-IP that preserve the original client IP.
You can configure your Azure Load Balancer or F5 BIG-IP to read and persist sessions based on this header.
- Implement F5 BIG-IP Sticky Sessions
Since F5 BIG-IP devices are standalone and do not sync, configuring session persistence within each F5 may help:
Enable Sticky Sessions (Persistence Profiles) on F5 BIG-IP.
I hope this has been helpful!
If above is unclear and/or you are unsure about something add a comment below.
If the response was helpful, please feel free to mark it as “Accepted Answer” and consider giving it an upvote. This helps others in the community as well.