![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 33%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Azure Load Balancer
An Azure service that delivers high availability and network performance to applications.
451 questions
Hi @博文 李 ,
Welcome to the Microsoft Q&A Platform. Thank you for reaching out & I hope you are doing well.
I understand that you are trying to SSL offload in Azure Load Balancer.
Please note that Azure LB is a Layer 4 offering.
This means, LB does not have the concept of TLS Handshake, and hence, adding a certificate to Azure LB will not make any sense.
This does not mean LB cannot handle HTTP/HTTPS Traffic. It can very well handle the traffic, but the SSL handshake must be carried out by the backend Pool member
For HTTP/HTTPS traffic, as in your case, you should consider going with App Gateway or Azure Front Door.
Load Balancing Options in Azure: https://learn.microsoft.com/en-us/azure/architecture/guide/technology-choices/load-balancing-overview
App Gateway:
- https://learn.microsoft.com/en-us/azure/application-gateway/ssl-overview
- https://learn.microsoft.com/en-us/azure/application-gateway/overview
- https://learn.microsoft.com/en-us/azure/application-gateway/features
AFD:
- https://learn.microsoft.com/en-us/azure/frontdoor/end-to-end-tls
- https://learn.microsoft.com/en-us/azure/frontdoor/front-door-overview
Please do let us know if you require further details on the above.
Cheers,
Kapil.