Is there a way to know which backend is serving the traffic?
We have 3 backend linux servers where nodejs application is installed. Azure application gateway is configured to route the requests to these 3 backend nodes. However, we would like to setup a custom header in Application Gateway to understand at any…
Application Gateway Listener TLS Certificate Issue
Hello, I have one issue related to Certificate in Azure application Gateway. Currently, In the application gateway I uploaded the certificate in .pfx format and then mapped it with the listener. But that same certificate is available in the Keyvalut and…
Frontdoor Health probe throws 404 with application gateway
Hi there, I've been facing an issue with FrontDoor health probe and the application gateway that I'm unable to find a solution to. I have the following architecture. Frontdoor has a few routes and origin groups with two origins configured with each…
Application Gateway Issue
I experience issues accessing specific pages or sections of your website hosted on a Windows Server behind an Application Gateway while other parts (like the home page) work fine, this could be due to several reasons
![](https://techprofile.blob.core.windows.net/images/62H93gENN0C4rR09zn-xsA.png?8D8CB5)
OCSP stapling of SSL certificate at Azure Application Gateway
I have an AKS setup and using Application Gateway for traffic management. TLS termination is being done at application gateway only. My security team says we need to do OCSP stapling for privacy purposes and to mitigate CR bypass issue. I have checked…
Clarification Needed on Azure WAF Ruleset Upgrade Notification for Non-Configured WAF Policy
I have recently received a notification from Azure urging me to upgrade to the latest Azure Web Application Firewall (WAF) ruleset version, specifically CRS 3.2 or DRS 2.1, by January 26, 2026. This is due to the deprecation of the older CRS 3.0 ruleset…
How to assign Azure public static IP address to Azure application gateway alter upgrading Public Ip from basic to standart
I have Azure virtual machine ,which network interface associated with Azure public static IP address ,which have basic SKU. I need to associate that public IP address with application gateway,which has standart v2 tier, when I will create application…
Why does Azure application gateway rate limit WAF return a 403 and not a 429?
When Azure Application gateway rate limiter functions as expected, we were expecting a 429, but instead, a 403 is returned. Why is this?
Managed identity doesn't allow permissions to join subnet, but it's owner on that vnet/subnet
I have an Azure managed application, deployed from the Azure Marketplace with an ARM template and with a managed identity assigned to a VM, that lives in the managed resource group. The managed identity has Owner permissions over the resource group so it…
![](https://techprofile.blob.core.windows.net/images/lvNaBJBqh0eurOu4q2bQSQ.png?8DA4E8)
Issue Creating Private Endpoint with Azure Application Gateway's Private Link Enabled
Hello Azure Community, We are facing an issue while creating a private endpoint in Azure, and we need some assistance to resolve this. Scenario: We have created an Azure Application Gateway with the private link feature enabled. Now, we are trying to…
Keeping the Original URL While Redirecting in Azure Application Gateway
Hello everyone, Can Azure Application Gateway send traffic to another URL while keeping the original URL in the browser? I have https://user.mysite.co this is pointed at the public ip of the application gateway WAF_v2. When user hits this, I want them to…
Azure 502 Bad Gateway Issue
I use an application gateway with WAF setup to run our web application deployed in a single Azure VM. When I access the application through App GW from the browser, I sometimes get a 502 Bad Gateway error. The App GW health probe responds with,…
![](https://techprofile.blob.core.windows.net/images/lvNaBJBqh0eurOu4q2bQSQ.png?8DA4E8)
Get 502 when saving a large post body despite my data has been successfully saved
Issue: I'm trying to make a POST call with large post body to an Azure api, and I got 502, however, the data has been saved successfully when I check the DB. at the meanwhile, When I try to call the same API in my localhost, i got 200. My Analysis:…
How to get the list of resources which are using TLS versions < 1.2 in Azure environment.
How to get the list of resources which are using TLS versions < 1.2 in Azure environment. As we need list of resources on a subscription which are still on lower version.
AKS Networking with Application Gateway and Azure Firewall
Hello everyone, I am currently implementing a solution in Azure that involves using Azure Kubernetes Service (AKS) as a backend, along with an Application Gateway for incoming traffic. Additionally, I have configured an Azure Firewall to manage outbound…
Azure Application Gateway request header routing to different AppService slots
Hello Guys, I'm exploring Azure Application Gateway, reading documentation and other things but couldn't figure-out if that is really possible. I have a mobile application with an API (a .NET 7 back-end) that is going to be deployed as Azure AppService…
Support for Lets Encrypt cert auto generation on AKS API Servers with private IP Addresses
Is Cert Manager/Let's Encrypt certificate auto-generation supported on Application Gateway Ingress for AKS clusters whose API servers don’t have public IP addresses (e.g. API Server Vnet integration)? I haven’t been able to make it work. It works fine…
Application Gateway in front of API Management
Hey Guys, We have API Management. https://learn.microsoft.com/en-us/security/benchmark/azure/baselines/api-management-security-baseline Microsoft's security baseline states to have WAF as part of Network Security with Application Gateway. What would the…
similar rewrite-url not working for another routing rule
I have a api management set up with basic tier which accepts one custom domain url. I have multiple api's defined ex: staging and qa both listening on the same url https://test.apim.com The internet facing requests are as follows, staging…
Updating SSL profile by adding few more ciphers in application gateway.
We want to choose customV2 however, we are getting below alert and post making the changes it does not give results. What is the correct process of updating SSL profiles pertaining to few listeners in an application gateway. Choosing a new predefined or…