You are deploying two new applications in your Azure subscription.
The applications have the following requirements:
application1: a global multi-region application that needs to redirect user traffic automatically to the closest region using a single domain
application2: a secure application that requires Transport Layer Security (TLS) termination at the edge
You need to implement the appropriate network service for each application.
Which services should you implement?
You should implement Front Door or Traffic Manager for application1. Azure Front Door works as a global HTTP/HTTPS layer load balancer, and it is integrated with Microsoft Content Delivery Network (CDN) and DNS-based global routing. Azure Front Door supports a range of traffic-routing methods for DNS-based routing, such as latency-based traffic routing that routes the web traffic to the closest region. You can also implement Azure Traffic Manager to define DNS-based global routing for multi-region application by using performance traffic routing.
You should implement Application Gateway or Front Door for application2. Azure Application Gateway works as an HTTP/HTTPS layer load balancer to route web traffic for one or multiple applications. You can use Application Gateway or Azure Front Door to provide TLS termination on the edge for application2, offloading the application servers to handle TLS encryption.
You should not implement Application Gateway for application1. Azure Application Gateway does not support routing the web traffic to the closest region. You need to implement a service that supports DNS-based load balancing, such as Azure Traffic Manager or Azure Front Door.
You should not implement Traffic Manager for application2. You can use Azure Traffic Manager to define DNS-based global routing for your applications. You need to implement a service that supports TLS termination on the edge, such as Azure Application Gateway or Azure Front Door.