Create an application gateway

Abstract

Learn how to create an application gateway so Azure can securely communicate between your different resources.

Create an application gateway to ensure an isolated, dedicated environment for your resources to communicate with Azure.

Prerequisites

Before you can create an application gateway, you must have:

  • Sitecore Experience Platform deployed in the Azure App Service Environment.

  • An SSL certificate that corresponds to the name of your public domain name, and the password for it.

    For more information about :SSL certificate requirements, see the topic Walkthrough: Setting up an App Service Environment

To create an application gateway:

  1. In the Azure portal, in the left-hand menu, click Create a resource and the New window opens.

  2. Click Networking, in the Featured list, click Application Gateway, then click Create.

    CreateApplicationGateway.png
  3. In Create application gateway, Basics, fill in all the fields.

    Field

    Enter

    Name

    The name of the resource. You must specify a valid name.

    Tier

    Use the default value.

    Instance count

    Use the default value.

    SKU size

    Use the default value.

    Subscription

    Select the appropriate value.

    Resource group

    Select the appropriate value.

    Location

    Select the appropriate value. Your virtual network and the public IP address must be in the same location as your gateway.

  4. Click OK and the Settings section opens.

To configure your subnet,

  1. In Settings, Subnet configuration, Virtual network, select the appropriate virtual network.

  2. In this example, select vnet - the virtual network that you created when you created an Application Service Environment.

  3. In the Subnet field, select the gateway subnet that you created as part of the virtual network for the App Service Environment.

    SubnetConfiguration.png

To configure your Frontend IP,

  1. In Frontend IP configuration, under Configure public IP address, in the DNS name label field, enter a DNS name for the public IP address of the application gateway, for example: applicationserviceenv.

    ConfigurePublicIPAddress.png
  2. Use the default settings for the rest of the parameters.

To configure the Listener section,

  1. In Listener configuration, Protocol, select the HTTPS.

    ListenerConfiguration.png
  2. In Port, use the default port.

  3. In the Upload PFX certificate field, upload your public domain name certificate, then enter the name and password of the certificate.

To configure your Web application firewall,

  1. In Additional Settings, Web application firewall, select the Upgrade to WAF tier checkbox.

  2. Set Firewall status to Enabled and Firewall mode to Prevention.

    WebApplicationFirewallSettings.png
  3. On the Summary page, review all of the settings then click OK.

It may take Azure several minutes to create the virtual network, the public IP address, and the application gateway.