Shodhshauryam, International Scientific Refereed Research Journal

Available online at : www.shisrrj.com

© 2024 SHISRRJ | Volume 7 | Issue 2
ISSN : 2581-6306 doi : https://doi.org/10.32628/SHISRRJ

Application Gateway Implementation with Azure

Minchala Sai Krishna1, K. Padmanaban2
1Post Graduate, Department of MCA, Annamacharya Institute of Technology & Sciences, Tirupati, Andhra Pradesh,
India
2Assistant Professor, Department of MCA, Annamacharya Institute of Technology & Sciences, Tirupati, Andhra Pradesh,

India

Article Info ABSTRACT

You can control the amount of traffic going to your online applications with
Article History Azure Application Gateway, a load balancer for web traffic (OSI layer 7).
Received : 25 March 2024 Conventional load balancers route traffic based on source IP address and
Published : 05 April 2024 port to a destination IP address and port at the transport layer
Application Gateways provide the ability to route requests based on
Publication Issue : additional information contained in the HTTP request, such as the host
March-April-2024 headers or URI path. For instance, traffic can be routed according to the
Volume 7, Issue 2 incoming URL. You can thus direct traffic to a particular group of servers
(referred to as a pool) that are set up for images if the incoming URL has the
Page Number : 364-369 prefix /images. If the URL contains /video, that traffic is diverted to an
additional optimized pool. You can set up host name or domain name
routing for many web applications on the same application gateway using
Application Gateway. It lets you join up to 100+ websites to a single
application gateway, enabling you to create deployments with a more
efficient topology. It is possible to route each website to a different backend
pool. For instance, the IP address of the application gateway is pointed to by
the three domains contoso.com, fabrikam.com, and adatum.com. Three
multi-site listeners would be created, and each listener would be set up for
the appropriate port and protocol.
Keywords: Azure Application Gateway, Load balancer, OSI layer 7, Web
traffic management, URL-based routing, Backend pool, Session affinity, TLS
termination, Web application firewall (WAF), Encryption, Azure services,
On-premises data center, Traffic mediation.

I. INTRODUCTION on a pool of web servers. The processing

Azure Application Gateway is an Azure service performed by Azure Application Gateway includes
that processes traffic to web apps that are hosted load balancing HTTP traffic and inspecting traffic

Copyright © 2024 The Author(s): This is an open-access article distributed under the terms of the Creative 364
Commons Attribution 4.0 International License (CC BY-NC 4.0)
 Minchala Sai Krishna et al Sh Int S Ref Res J, March-April-2024, 7 (2) : 364-369

using web application firewall. It also includes HTTP request attributes.Studies emphasize its
encrypting traffic between users and an ability to route traffic based on URI paths, host
application gateway, and encrypting traffic headers, and other HTTP attributes, offering
between application servers and an application granular control over traffic management.
gateway Adatum is a new and expanding online Furthermore, the literature highlights how Azure
commerce store that sells industrial drones. You're Application Gateway can improve security by
responsible for networking at the company mitigating risks like SQL injection and cross-site
Adatum has several web applications that are scripting attacks through features like TLS
hosted on computers in its on-premises data centre. termination, session affinity, and integration with
At the moment, a special but aging hardware web application firewalls (WAFs).
device is deployed on the Adatum perimeter An over view of the Azure cloud service
network that manages traffic to the web PAAS service and Storage account
applications hosted on these computers. You want One instance of a platform as a service (PaaS) is
to retire this device and have traffic mediated by Azure Cloud Services. This technology is intended
an Azure service. to support apps that are scalable, dependable, and
low-cost to run, much like Azure App Service.
To meet your goals, you need to ensure that the Azure Cloud Services are hosted on virtual
Azure service replicates the functionality that the machines (VMs), just as App Service. On the other
special hardware currently provides. Important hand, the VMs are more in your hands. On virtual
functionality that must be present in the machines (VMs) that make use of Azure Cloud
replacement service. Services, you can remotely access and install your
own applications. Creating virtual machines is not
II. LITERATURE REVIEW necessary while using Azure Cloud Services.
Rather, you supply Azure with a configuration file
Examining the Literature on application gateway that specifies how many of each you want, for
implementation with azure example, "three web role instances" and "two
Azure focuses on examining existing research, worker role instances."
publications, and documentation related to the Platform-as-a-service (PaaS) is a distributed
utilization of Azure Application Gateway for computing concept in which consumers use the
managing web traffic and load balancing in cloud Internet to rent hardware and software from an
environments. Various sources such as academic external provider. These are usually necessary to
papers, technical articles, and vendor improve the application. The PaaS provider uses
documentation are reviewed to understand the its own framework for programming and
features, capabilities, and best practices associated equipment. As such, it frees designers from having
with Azure Application Gateway deployment.The to install hardware and software in order to run or
literature that is currently available emphasizes create another application. Press gadget is used in
the importance of Azure Application Gateway as a simple and practical way. Generally speaking,
an OSI layer 7 web traffic load balancer that customers pay for each usage premise. By using
allows for effective routing decisions based on local alternatives, an association can take over for

Volume 7, Issue 2, March-April-2024 | www.shisrrj.com 365

 Minchala Sai Krishna et al Sh Int S Ref Res J, March-April-2024, 7 (2) : 364-369

PAS that takes prospective cost investment funds Implementation

into consideration. Deploying an Azure virtual network's web traffic
Azure storage Account: load balancer is a prerequisite for implementing
All of the data services from Azure storage are Azure Application Gateway.
gathered together in an Azure Storage Account, This gateway operates at OSI layer 7, allowing for
which is a resource (Azure blobs, Azure files, URL-based routing and session affinity. It supports
Azure Queues, and Azure Tables). This aids in our features like TLS termination, web application
collective management of them all. All of the firewall (WAF) integration, and security filtering
services within the storage account are subject to to protect against malicious attacks. By
the policies we establish when the account is configuring backend pools and routing rules,
created or modified thereafter. All installed organizations can efficiently manage traffic to
storage services and the data they contain are their web applications hosted on Azure.
deleted when a storage account is deleted. Additionally, Azure Application Gateway provides
scalability, high availability, and seamless
III. METHODOLOGY integration with other Azure services, making it a
Approach versatile solution for optimizing web traffic
Azure Application Gateway involves several key management in the cloud.
steps. Firstly, a thorough analysis of the existing Characteristics
infrastructure and traffic patterns is conducted to Implementing Azure Application Gateway offers
identify the specific requirements and challenges. several key characteristics that enhance the
Then, a detailed design is developed, outlining the management and optimization of web traffic.
configuration of the Application Gateway, Firstly, it operates at OSI layer 7, allowing for the
including routing rules, backend pools, and making of complex routing decisions using HTTP
security policies. Next, the implementation phase properties like host headers and URI paths. This
involves deploying the Application Gateway makes URL-based routing easier. Directing traffic
within the Azure environment according to the to specific backend pools tailored for different
design specifications, ensuring proper integration purposes, such as serving images or videos.
with existing resources. Throughout the process, Additionally, Application Gateway supports TLS
thorough testing is conducted to validate the termination, reducing CPU overhead for
functionality and performance of the Application encryption and decryption operations. Moreover,
Gateway, including load balancing, routing, and its integration with Web Application Firewall
security features. Finally, ongoing monitoring and (WAF) provides robust security features, guarding
optimization are essential to ensure the continued against common threats like SQL injection and
effectiveness and scalability of the Application cross-site scripting attacks. With scalability, high
Gateway solution. availability, and seamless integration with other
Azure services, Application Gateway offers a
comprehensive solution for efficiently managing
and securing web applications in the cloud.

Volume 7, Issue 2, March-April-2024 | www.shisrrj.com 366

 Minchala Sai Krishna et al Sh Int S Ref Res J, March-April-2024, 7 (2) : 364-369

Data preprocessing By integrating these services, the experimental

Data preprocessing may involve TLS termination setup will enable the deployment of the
to optimize encryption and decryption operations, Application Gateway, allowing for efficient traffic
ensuring efficient utilization of CPU resources on management, URL-based routing, TLS
the backend servers. By effectively preprocessing termination, and security filtering. This setup will
the data, Azure Application Gateway enhances the provide a comprehensive environment for testing
reliability, security, and performance of web and evaluating the functionality, performance, and
applications hosted on the Azure platform. scalability of the Azure Application Gateway in
Preprocessing Data real-world scenarios.
Preprocessing data for Azure Application Gateway
implementation involves gathering and organizing
relevant information about web applications,
backend servers, routing requirements, and
security policies, it involves assessing the
scalability and high availability requirements, as
well as considering any compliance or regulatory
Fig 1 Creating Application Gateway
considerations. For the Application Gateway to be
configured and deployed in the Azure
environment without a hitch, the data must be
processed and organized after it has been gathered.

IV.EXPERIMENTAL SETUP

Azure Application Gateway, several Azure

services will be utilized. Firstly, Azure Cloud
Fig 2 Deployment Progress
Service will provide the platform for deploying
and managing the application gateway. This
service offers scalability, reliability, and cost-
effectiveness, making it an ideal choice for hosting
cloud-based solutions.
To provide scalable and safe storage options, the
Storage Account will serve as a container for data
services including files, queues, tables, and blobs.
Meanwhile, the App Service will host the web
applications that will be load-balanced by the
VI. DISCUSSIONS
Application Gateway. App Service offers features
Interpretations of results
like automatic scaling, continuous deployment,
By operating at OSI layer 7, the gateway enables
and integration with various programming
URL-based routing, allowing for precise traffic
languages and frameworks.

Volume 7, Issue 2, March-April-2024 | www.shisrrj.com 367

 Minchala Sai Krishna et al Sh Int S Ref Res J, March-April-2024, 7 (2) : 364-369

redirection based on attributes like URI path and potential risks effectively. Overall, while
host headers. This granularity enhances the Application Gateway provides powerful
efficiency and performance of web applications by capabilities for web traffic management, careful
directing traffic to specific backend pools consideration of its limitations and complexities is
optimized for various content types. Additionally, essential for successful implementation.
features such as session affinity and TLS VII.CONCLUSION
termination contribute to improved security and By leveraging its capabilities such as OSI layer 7
reduced overhead on backend servers. routing, URL-based routing, and backend pool
Application gateway implementation with azure configuration, organizations can achieve efficient
implications traffic management and optimization.
it enhances the efficiency of web application Additionally, features like session affinity, TLS
routing by allowing URL-based routing and termination, and integrated web application
directing traffic to specific backend pools based on firewall enhance security and reliability. Azure
attributes such as URI path or host headers. This Application Gateway seamlessly integrates with
leads to improved performance and better other Azure services, providing scalability, high
resource utilization. The implementation of Azure availability, and compliance with regulatory
Application Gateway not only optimizes web requirements. Overall, adopting Azure
traffic management but also reinforces security Application Gateway streamlines traffic
measures and ensures reliable performance, management, enhances security, and ensures
aligning with organizational objectives for optimal performance for web applications
efficient and secure web application delivery. deployed on Azure.
Benefits and Drawbacks
It enables scalability and high availability, II. REFERENCES
allowing organizations to efficiently manage
growing traffic demands. Implementing Azure [1]. A. Chonka, Y. Xiang, W. Zhou, and A.
Application Gateway offers several benefits, Bonti, "Cloud security defence to protect
including advanced traffic management cloud computing against HTTP-DoS and
capabilities such as URL-based routing, session XML-DoS attacks," Journal of Network and
affinity, and TLS termination, which enhance the Computer Applications, vol. 34, no. 4, pp.
performance and security of web applications. 1097- 1107, 2011.
Application Gateway is limited to handling web [2]. B. Halpert, Auditing Cloud Computing.
traffic which means it may not be suitable for all Wiley Online Library, 2011.
types of applications or protocols. Additionally, [3]. H. AlJahdali, A. Albatli, P. Garraghan, P.
setting up and configuring Application Gateway Townend, L. Lau, and J. Xu, "Multi-tenancy
can be complex, requiring expertise in Azure in cloud computing," in 2014 IEEE 8th
networking and traffic management. Furthermore, International Symposium on Service
while Application Gateway offers comprehensive Oriented System Engineering, 2014: IEEE,
security features, organizations need to ensure pp. 344-351.
proper configuration and monitoring to mitigate

Volume 7, Issue 2, March-April-2024 | www.shisrrj.com 368

 Minchala Sai Krishna et al Sh Int S Ref Res J, March-April-2024, 7 (2) : 364-369

[4]. M. A. Zardari, L. T. Jung, and M. N. B.

Zakaria, "Hybrid Multi-cloud Data Security
(HMCDS) Model and Data Classification," in
2013 International Conference on Advanced
Computer Science Applications and
Technolo- gies, 2013: IEEE, pp. 166-171.
[5]. N. Sultan and S. van de Bunt-Kokhuis,
"Organisational culture and cloud
computing: coping with a disruptive
innovation," Technology Analysis Strategic
Management, vol. 24, no. 2, pp. 167-179,
2012.
[6]. B. Tomas and B. Vuksic, "Peer to peer
distributed storage and computing cloud
system," in Proceedings of the ITI 2012 34th
International Confer- ence on Information
Technology Interfaces, 2012: IEEE, pp. 79-
84.
[7]. H. Tianfield, "Security issues in cloud
computing," in 2012 IEEE Interna- tional
Conference on Systems, Man, and
Cybernetics (SMC), 2012: IEEE,pp. 1082-
1089.

Volume 7, Issue 2, March-April-2024 | www.shisrrj.com 369