Syllabus

Microsoft Azure Mastery for .NET Architects

1. Azure Identity & Governance
Microsoft Entra ID (Azure AD): Scaling identity for .NET apps App Registrations & Service Principals: Secure machine identity Azure Policy & Blueprints: Enforcing architecture standards Resource Groups & Management Groups: Organizing the Cloud
2. Azure Web & Compute
Azure App Service: Managed hosting for ASP.NET Core Azure Functions: Serverless logic with Durable Functions Azure Container Apps (ACA): Serverless K8s for microservices Azure Kubernetes Service (AKS): Enterprise orchestration
3. Azure Databases
Azure SQL Database: The king of cloud-native SQL Azure Cosmos DB: Global scale with multi-model NoSQL Azure Cache for Redis: Managed memory performance Azure Database for PostgreSQL/MySQL: Flexible server scaling
4. Networking & Security
Azure Virtual Network (VNet): Subnets, Peering, and Gateways Azure Front Door: Global CDN & Load Balancing Azure Key Vault: Managing secrets, keys, and certificates Azure Application Gateway (WAF): Protecting the front-end
5. Messaging & Integration
Azure Service Bus: Enterprise-grade message queuing Azure Event Grid: Building reactive, event-driven systems Azure Event Hubs: Large-scale data ingestion for .NET Logic Apps: No-code orchestration for .NET developers
6. AI & Data Services
Azure OpenAI Service: Integrating GPT into .NET apps Cognitive Services: Vision, Speech, and Language APIs Azure Search (AI Search): Semantic search and vector indexing Azure Data Factory: ETL and data movement
7. Monitoring & Hybrid
Azure Monitor & Application Insights: Deep .NET observability Log Analytics: KQL (Kusto) for large-scale log analysis Azure Arc: Managing on-premise and multi-cloud from Azure Azure Bicep: Modern Infrastructure as Code for Azure
8. Enterprise Scale & Patterns
Cloud Adoption Framework (CAF): The Architect's strategy Case Study: Global retail scaling with Cosmos DB and AKS
Microsoft Azure Mastery for .NET Architects
Lesson 16 of 30 53% of course

Azure Application Gateway (WAF): Protecting the front-end

18 · 8 min · 5/23/2026

Sign in to track progress and bookmarks.

Layer 7 Load Balancing

Azure Application Gateway is a web traffic load balancer that enables you to manage traffic to your web applications.

1. WAF Integration

The Application Gateway **WAF** skew provides centralized protection of your web applications from common exploits and vulnerabilities. It is based on the **OWASP Core Rule Set (CRS)** and can be run in 'Detection' or 'Prevention' mode. **Architect Tip:** Always start in Detection mode to ensure no false positives are blocking real users.

2. Path-Based Routing

You can route traffic based on URL paths. For example, toolliyo.com/images/* goes to an S3-equivalent storage pool, while toolliyo.com/api/* goes to your .NET container fleet. This allows you to build a unified URL structure for a complex microservice architecture.

3. Architect Insight

Q: "Does Application Gateway support WebSockets?"

Architect Answer: "YES! It has full support for **WebSockets** and **HTTP/2**. This is critical if you are building real-time .NET applications with **SignalR**. Just ensure that you enable 'Cookie-Based Affinity' if your SignalR setup hasn't been configured with a backplane like Redis."

Interview Q&A for this course

Test your knowledge

Quizzes linked to this course—pass to earn certificates.

Microsoft Azure — Practice Quiz
Test your understanding of Microsoft Azure Tutorial. App Service, storage, SQL, and identi…
Intermediate 15 min
Cloud Computing — Practice Quiz
Test your understanding of Cloud Computing Tutorial. IaaS, PaaS, SaaS, and cloud architect…
Intermediate 15 min
AWS Cloud — Practice Quiz
Test your understanding of AWS Cloud Tutorial. EC2, S3, RDS, and deploy .NET on AWS.
Intermediate 15 min
Browse all quizzes
Previous Next
Microsoft Azure Mastery for .NET Architects

On this page

1. WAF Integration 2. Path-Based Routing 3. Architect Insight
1. Azure Identity & Governance
Microsoft Entra ID (Azure AD): Scaling identity for .NET apps App Registrations & Service Principals: Secure machine identity Azure Policy & Blueprints: Enforcing architecture standards Resource Groups & Management Groups: Organizing the Cloud
2. Azure Web & Compute
Azure App Service: Managed hosting for ASP.NET Core Azure Functions: Serverless logic with Durable Functions Azure Container Apps (ACA): Serverless K8s for microservices Azure Kubernetes Service (AKS): Enterprise orchestration
3. Azure Databases
Azure SQL Database: The king of cloud-native SQL Azure Cosmos DB: Global scale with multi-model NoSQL Azure Cache for Redis: Managed memory performance Azure Database for PostgreSQL/MySQL: Flexible server scaling
4. Networking & Security
Azure Virtual Network (VNet): Subnets, Peering, and Gateways Azure Front Door: Global CDN & Load Balancing Azure Key Vault: Managing secrets, keys, and certificates Azure Application Gateway (WAF): Protecting the front-end
5. Messaging & Integration
Azure Service Bus: Enterprise-grade message queuing Azure Event Grid: Building reactive, event-driven systems Azure Event Hubs: Large-scale data ingestion for .NET Logic Apps: No-code orchestration for .NET developers
6. AI & Data Services
Azure OpenAI Service: Integrating GPT into .NET apps Cognitive Services: Vision, Speech, and Language APIs Azure Search (AI Search): Semantic search and vector indexing Azure Data Factory: ETL and data movement
7. Monitoring & Hybrid
Azure Monitor & Application Insights: Deep .NET observability Log Analytics: KQL (Kusto) for large-scale log analysis Azure Arc: Managing on-premise and multi-cloud from Azure Azure Bicep: Modern Infrastructure as Code for Azure
8. Enterprise Scale & Patterns
Cloud Adoption Framework (CAF): The Architect's strategy Case Study: Global retail scaling with Cosmos DB and AKS