Distribute Network Traffic with Azure Load Balancer

B

If you require "SSL offloading", application layer treatment, or wish to delegate certificate management to Azure, you should use Azure's layer 7 load balancer

Application Gateway instead of the Load Balanacer.

Incorrect Answers:

D: Because Load Balancer is agnostic to the TCP payload and TLS offload ("SSL") is not provided.

For this scenario, the technology that should be recommended to distribute network traffic and meet the requirements is Azure Load Balancer.

Azure Load Balancer is a Layer 4 (TCP/UDP) load balancer that can distribute incoming traffic to different pools of dedicated virtual machines (VMs) based on rules. It can also provide SSL offloading capabilities, which means that it can terminate the SSL connection at the load balancer and then forward the decrypted traffic to the backend VMs.

Server-level firewall rules are not appropriate for this scenario, as they are used to restrict incoming and outgoing traffic to individual VMs, rather than distributing traffic to different pools of VMs.

Azure Application Gateway is a Layer 7 (HTTP/HTTPS) load balancer that can distribute traffic based on URL path or host headers. While it can also provide SSL offloading capabilities, it may not be the best fit for this scenario as it is typically used for web applications, rather than non-HTTP/S protocols.

Azure Traffic Manager is a DNS-based traffic routing service that can distribute traffic to different regions based on geographic location or endpoint health. It is not suitable for this scenario as it does not provide Layer 4 load balancing or SSL offloading capabilities.

Therefore, Azure Load Balancer is the recommended solution for this scenario.