Azure Front Door
An Azure service that provides a cloud content delivery network with threat protection.
659 questions
0 answers
How to limit Azure Front Door Cipher Suites Manually - Repeat
Previous thread stated; "Since this thread is too old, I would recommend creating a new thread on the same forum with as many details about your issue as possible. That would make sure your issue has better visibility in the community" Hence,…
asked 2024-09-04T09:33:21.6133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(121.6, 83%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMS%3C/text%3E%3C/svg%3E)
Mark Spurling
10
Reputation points
commented 2024-09-04T11:43:21.56+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(121.6, 6%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMH%3C/text%3E%3C/svg%3E)
Matthew Hull
5
Reputation points
1 answer
Azure CDN on custom domain with HTTPS access and SIP parameter in SAS token uses the incorrect IP address
In april 2024 we encountered an issue where accessing a CDN on custom domain with HTTPS access and SIP parameter in SAS token uses the incorrect IP address always lead to a 401 response. Therefore i started support case 2404240050004042. The SAS-token…
asked 2024-08-30T08:26:39.3866667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(32, 90%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBB%3C/text%3E%3C/svg%3E)
Bas Breijer
0
Reputation points
commented 2024-09-04T11:37:08.9866667+00:00
Bas Breijer
0
Reputation points
5 answers
How to limit Azure Front Door Cipher Suites Manually?
Hi, Right now there is a preview feature for Min TLS Cipher Suite on app Services and I know that we have a premium feature for End-to-end TLS with Azure Front Door. We are using Azure Front Door for our Static Website and we have the Premium tier…
asked 2023-06-02T07:48:57.93+00:00
Aidin Azimi
35
Reputation points
commented 2024-09-04T09:35:09.0233333+00:00
Mark Spurling
10
Reputation points
0 answers
How to block all geographic region and only allow specific regions to reach my Azure APIM ?
I have deployed multiple API Management Services (APIM) in my Azure Subscriptions. According to Application Insight, this APIM is hit or maybe attacked by a few thousand requests from around the world daily which my company and product do not have…
asked 2024-09-04T03:23:01.02+00:00
EnterpriseArchitect
5,316
Reputation points
commented 2024-09-04T06:32:09.63+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(0, 59%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJM%3C/text%3E%3C/svg%3E)
JananiRamesh-MSFT
25,991
Reputation points
1 answer
AFD custom domain redirects to the origin host name (App service)
We have an App Service. In front of it we have an Azure Front Door. Everything works perfectly with the Front door default domain .z01.azurefd.net. The problem is when I am adding a custom domain in front door following the steps from the steps from this…
asked 2023-01-20T15:10:41.2533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 28.999999999999996%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMG%3C/text%3E%3C/svg%3E)
Mircea Gherasim
10
Reputation points
commented 2024-09-03T18:11:01.26+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 52%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVS%3C/text%3E%3C/svg%3E)
Varsha Shintre
20
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
When will request header size limit on AFD be raised from 32k to 64 k as APIM
When will request header size limit on AFD be raised from 32k to 64 k as APIM? APIM is 64 k
asked 2024-08-30T02:08:40.8433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(208, 12%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHL%3C/text%3E%3C/svg%3E)
Houqiang Liu (Shanghai Wicresoft Co,.Ltd.)
45
Reputation points Microsoft Vendor
accepted 2024-09-03T05:13:37.85+00:00
Houqiang Liu (Shanghai Wicresoft Co,.Ltd.)
45
Reputation points Microsoft Vendor
0 answers
azure frontdoor origin health percentage is 0%
I configured azure app gateway as my origin and Health probe is also enabled. When I check the Origin health percentage metrics it is showing 0%. What may be the reason for it? How health probe works in terms of Application Gateway? If I have…
asked 2022-08-08T09:33:51.393+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(297.6, 54%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGH%3C/text%3E%3C/svg%3E)
Gowda, Hariprasad
86
Reputation points
edited the question 2024-09-03T03:10:27.51+00:00
Yan Xie
40
Reputation points Microsoft Employee
0 answers
How to perform authentication in container apps through Front Door's custom domain?
I have a container app hosting a service that's currently publicly accessible. I'd like to add an authentication/authorization mechanism to the container app so it requires a login from Entra ID first(via front door custom domain). Our container app…
asked 2024-08-21T10:27:07.6133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 91%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBS%3C/text%3E%3C/svg%3E)
Boyan Stefanov
20
Reputation points
edited the question 2024-09-02T16:45:09.2933333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 17%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
Givary-MSFT
32,116
Reputation points Microsoft Employee
1 answer
Current Tenant 'xxxx' is not authorized to access linked subscription 'yyyy'
I am trying to connect Azure Front Door Origin to an external (Other Tenant) resource using Private Link Service. When I put the FDQN object into Origin configuration, it comes back with the following error: The client has permission to perform action…
asked 2024-08-30T18:39:14.31+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(230.39999999999998, 11%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENW%3C/text%3E%3C/svg%3E)
Nelson, Warren
0
Reputation points
commented 2024-09-02T16:11:01.3733333+00:00
KapilAnanth-MSFT
43,651
Reputation points Microsoft Employee
0 answers
Azure CDN is throwing 421 HTTP Error on Safari
Hi, We're currently proxying traffic to our Azure B2C sign in pages through a Azure Front Door Premium CDN. However, it seems unstable for users using safari (any version). It's common that they receive a HTTP 421 response instead of the intended…
asked 2024-08-30T06:15:09.2466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 95%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EF%3C/text%3E%3C/svg%3E)
Fredrik
0
Reputation points
commented 2024-09-02T11:36:48.4233333+00:00
KapilAnanth-MSFT
43,651
Reputation points Microsoft Employee
1 answer
Frontdoor WAF positives unclear
I see out WAF firing on a simple text and I can’t figure out why the rules are triggering (see attached txt) These are all very normal texts, without anything fishy. The only weird thing is that they seem incomplete sentences. But I see nothing that…
asked 2024-08-08T14:49:12.45+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 6%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EOG%3C/text%3E%3C/svg%3E)
Owin Gruters - iO
46
Reputation points
commented 2024-09-02T09:39:03.8666667+00:00
Owin Gruters - iO
46
Reputation points
1 answer
Azure Storage Account - Public Access via Azure Front Door Endpoint - Firewall Setting
Hi, I have a storage account static website being accessed via Azure FrontDoor. It works well with "Public network access" option set to "Enabled from all networks". If I set it to "Enabled from selected VNETs and IPs" I'll…
asked 2024-08-30T14:19:48.2533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(153.6, 64%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJD%3C/text%3E%3C/svg%3E)
juni dev
336
Reputation points
answered 2024-09-02T07:25:13.25+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 81%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESP%3C/text%3E%3C/svg%3E)
Sai Prasanna Sinde (Quadrant Resource LLC)
75
Reputation points Microsoft Vendor
1 answer
FrontDoor Origin health probe with private link
Hi, I have an AKS and an Azure Frontdoor with an Origin that uses a private link to connect to the AKS internal Load Balancer. I am trying to set up HTTPS between frontdoor and AKS. I use cert-manager to manage AKS certificates. This setup will…
Azure Front Door
Azure Front Door
An Azure service that provides a cloud content delivery network with threat protection.
659 questions
Azure
Azure
A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.
1,148 questions
Azure Kubernetes Service (AKS)
Azure Kubernetes Service (AKS)
An Azure service that provides serverless Kubernetes, an integrated continuous integration and continuous delivery experience, and enterprise-grade security and governance.
2,060 questions
asked 2024-08-27T18:01:10.97+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 38%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
anacelto
0
Reputation points
commented 2024-08-29T13:08:47.3233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 71%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGP%3C/text%3E%3C/svg%3E)
Ganesh Patapati (Quadrant Resource LLC)
20
Reputation points Microsoft Vendor
0 answers
AFD Premium - Redirect adds a Trailing Slash when redirecting to mobile app
Hello, We have an OpenID Connect provider behind an Azure Front Door Classic, and everything is working as expected. We are currently migrating our infrastructure to a new Azure tenant where we have deployed the same application behind an Azure Front…
asked 2024-08-21T13:49:06.0366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(28.799999999999997, 54%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWH%3C/text%3E%3C/svg%3E)
wael hammami
0
Reputation points
commented 2024-08-28T08:43:25.4133333+00:00
wael hammami
0
Reputation points
0 answers
Azure WAF Security Features in Standard Tier with Front Door
Hey all - I’m looking for insights regarding the security features offered by the Azure WAF when deployed in the Standard tier with Azure FD, particularly in scenarios where the customer does not want to create any custom rules. Given that the Microsoft…
asked 2024-08-20T04:53:06.4433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 20%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBG%3C/text%3E%3C/svg%3E)
Bhushan Gawale
316
Reputation points
commented 2024-08-26T09:38:44.1533333+00:00
KapilAnanth-MSFT
43,651
Reputation points Microsoft Employee
3 answers
Azure Front Door URL Rewrite rules not working as planned
I have set up Azure Front Door. There are several App Services set up as such: https://www.thisismydomain2021.com/appservice1 --> https://this-is-my-app-service-1.azurewebsites.net https://www.thisismydomain2021.com/appservice2 --> …
asked 2021-05-20T13:40:03.433+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 84%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDE%3C/text%3E%3C/svg%3E)
David Echo
126
Reputation points
commented 2024-08-26T02:00:49.8433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(140.8, 33%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAF%3C/text%3E%3C/svg%3E)
Andrew Feldman
0
Reputation points
2 answers
One of the answers was accepted by the question author.
Does Front Door origins support wildcard hosts?
I have an AKS cluster behind a Front Door, connected through a private link that is pointing to an internal load balancer. The cluster hosts multiple applications that are accessible through dynamically created subdomains. My setup is as follows: My…
Azure Front Door
Azure Front Door
An Azure service that provides a cloud content delivery network with threat protection.
659 questions
Azure
Azure
A cloud computing platform and infrastructure for building, deploying and managing applications and services through a worldwide network of Microsoft-managed datacenters.
1,148 questions
Azure Kubernetes Service (AKS)
Azure Kubernetes Service (AKS)
An Azure service that provides serverless Kubernetes, an integrated continuous integration and continuous delivery experience, and enterprise-grade security and governance.
2,060 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(185.6, 84%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
1 answer
One of the answers was accepted by the question author.
Frontdoor private IP
Hello, I want to migrate some app hosted on VirtualMachine to webservices. Different URL paths will be hosted on different webservices in 2 locations. So, access from outside internet is quite easy- frontdoor, configuration to direct requests to…
asked 2024-08-09T11:59:59+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 63%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPK%3C/text%3E%3C/svg%3E)
Paweł Kubiak
20
Reputation points
accepted 2024-08-19T11:49:40.39+00:00
Paweł Kubiak
20
Reputation points
1 answer
as i create the private link service from origin frontdoor ; it gives the same description for the origin though they are different ids
i created a private link service with internal IP from the nginx ingress as aks-ingress then I configured a frontdoor and endpoint; origin group in origin I created test1.dev.example.com and description as test1dev and assigned to aks-ingress…
asked 2024-08-14T06:34:38.28+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(51.2, 96%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
ashik
0
Reputation points
commented 2024-08-15T09:01:00.3066667+00:00
KapilAnanth-MSFT
43,651
Reputation points Microsoft Employee
1 answer
Azure AD B2C can't set cookie with cross domain.
I have a custom domain set and verified in the Microsoft Entra ID. I also have Azure Front Door Classic that will route the request to my azure b2c tenant. i.e: accounts.contoso.com/tenant.onmicrosoft.us/.../authorize -> Azure Front door Classic…
asked 2024-08-14T14:26:42.14+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(22.400000000000002, 79%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
Minh Truong
0
Reputation points
answered 2024-08-15T00:20:25.26+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 59%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
ChaitanyaNaykodi-MSFT
25,381
Reputation points Microsoft Employee