Announcements, Azure Front Door, Networking, Security
Introducing the new Azure Front Door: Reimagined for modern apps and content
By Sunil Kishen Principal Program Manager, Azure Networking
5 min read
This blog has been co-authored by Jessie Jia, Senior Program Manager, Azure Networking and Gunjan Jain, Principal Program Manager, Azure Networking.
In 2019, we launched Azure Front Door to bring enterprise-grade content delivery network (CDN) capabilities to our customers. This was a result of our own cloud journey over the past 13 years, which led us to develop unique infrastructure and services hardened by support for Microsoft’s largest applications like Bing, Microsoft 365, LinkedIn, Skype, and Azure. Read about LinkedIn’s experience1 migrating their own infrastructure to Azure Front Door.
Since then, a lot has changed for you and your customers. The acceleration of digital transformation to adapt to new ways of doing business, hybrid working models, and increasing security costs has driven the demand for a new type of cloud CDN that can address these modern challenges and simplify internet-first architectures in the cloud.
Today, we are announcing the general availability of the new Azure Front Door, our native, modern cloud content delivery network (CDN) catering to both dynamic and static content acceleration with built-in turnkey security, and a simple and predictable pricing model. There are two Azure Front Door tiers—Azure Front Door Standard and Premium—that provide a unified, secure solution for delivering your applications, APIs, and content on Azure or anywhere.
Azure Front Door: The modern enterprise CDN
Every company is now a technology company challenged with managing a rapidly growing digital footprint, dispersed workforce, and evolving security threats. As a result, enterprises are looking for solutions that help meet the rising demands for better scalability, more security, higher performance, greater automation, and easier manageability—with reduced costs.
Whether you’re delivering content and files or building global apps and APIs, Azure Front Door can help you deliver higher availability, lower latency, better scale, and more secure experiences to your users wherever they are. Azure Front Door also enables you to define, manage, and monitor the global routing for your app.
Dynamic and static content acceleration with intelligent security
With the addition of Azure Front Door Standard and Premium, two new tiers that combine the capabilities of Azure Front Door (classic) and Azure CDN from Microsoft (classic) and attach with Azure Web Application Firewall (WAF), Azure Front Door is now a unified, modern cloud CDN platform with intelligent threat protection and simple to understand pricing model, built on Microsoft’s massive-scale private global network.
Azure Front Door now also provides a rich set of advanced capabilities that enhance the DevOps experience, security posture, and cost-effectiveness for enterprise customers migrating and/or deploying high-performance, scalable, and secure applications on Azure or anywhere.
The key benefits you can get from Azure Front Door include:
Build and operate dynamic, high-quality digital experiences with highly automated, secure, and reliable platforms.
- Deeply integrated experiences with other Azure applications and services such as domain name system (DNS) and Web Apps to improve manageability and speed up deployment. We now offer DNS TXT record-based validation to simplify and reduce delays around custom domain validation.
- Improved automation and simplified provisioning with cloud-native and DevOps friendly command line tools. For example, you can now provision custom domains along with other resources in one deployment and validate the domain ownership afterward or use the new Quick Create option in the portal to dramatically reduce deployment and configuration steps.
- Enhanced analytics capabilities such as access logs, health probe logs, additional metrics, and pre-built traffic and security reports for more effective monitoring, troubleshooting, and debugging.
- Expanded rules at the edge with enhanced rules engine capabilities adding regular expressions and server variables that let you move more of your business logic to the edge and create more complex and dynamic routing between your users and backends.
Fast global delivery
Deploy your apps and content at scale to your users wherever they are—creating opportunities for you to compete, weather change, and quickly adapt to new demand and markets.
- A truly global network built by Microsoft with hundreds of edge locations connected to Azure via a private WAN that can improve latency for apps by up to three times and provides enterprise-grade reliability and massive scalability to deliver low latency and high throughput for consistent application experiences.
- Unified static and dynamic delivery is offered in a single service to accelerate and scale your application and with real-time routing to develop high-availability experiences for applications hosted in Azure or anywhere.
- A simplified cost model that reduces billing complexity by having fewer meters customers need to plan for and integrated egress (data transfer outbound) pricing that removes the separate egress charge from Azure regions to Azure Front Door. Please refer to the Azure Front Door pricing page for more details.
Protect your digital estate against known and new threats with intelligent security that embrace a Zero Trust framework.
- Best-of-breed security services seamlessly attached such as built-in layer 3-4 DDoS protection, Web Application Firewall, Azure DNS to protect your domains, and Azure Private Link.
- WAF enhancements offer a powerful, yet cost-effective protection from common attacks and bots and are customizable to application-specific detections. Azure Front Door Premium includes Azure Web Application Firewall at no additional cost and provides enhanced capabilities. Azure WAF is also releasing a new DRS 2.0 RuleSet, offering reduced false positives and anomaly scoring-based detection. Bot manager—now generally available, provides an additional layer of Bot detection based on Microsoft Threat Intelligence.
- Azure Private Link support on Azure Front Door Premium with availability in all Azure regions with availability zones, enabling your application to extend all the way out to the edge with private access from Azure Front Door to your backends in Azure.
Azure Front Door (classic) and Azure CDN from Microsoft (classic)
The existing Azure Front Door and Azure CDN from Microsoft will now be known as Azure Front Door (classic) and Azure CDN from Microsoft (classic) moving forward. Azure Front Door (classic), as well as Azure CDN from Microsoft (classic), will continue to be fully supported and you can continue to use them. However, we encourage you to take advantage of Azure Front Door Standard and Premium as the latest capabilities and future enhancements will not be available on Azure Front Door (classic).
Over the coming months, we will be launching zero downtime migrations from Azure Front Door (classic) and Azure CDN from Microsoft (classic) to Azure Front Door Standard and Premium. Please stay tuned for more updates. If you are new to Azure Front Door, you can easily launch Azure Front Door Standard and Premium in the Azure portal or using our API.
Get started with the new Azure Front Door today! To learn more about the service and various features, refer to the Azure Front Door documentation. If you are interested in exploring capabilities beyond the standard offering, simply file a feature request on our Networking Community Page or feel free to contact us at email@example.com.
1Accelerating the LinkedIn Experience with Azure Front Door.