Loading...

Introducing Azure Gateway Load Balancer: Deploy and scale network virtual appliances with ease

Introducing Azure Gateway Load Balancer: Deploy and scale network virtual appliances with ease

When we announced High Availability (HA) Ports for Azure Load Balancer, we enabled you to leverage network virtual appliances with more flexibility in Azure. HA ports is a unique capability that makes network virtual appliance (NVA) flexible as you deploy them in Azure – a first in the industry, it changed how you deploy NVAs at scale.

 

Today, we are pleased to announce the preview of Gateway Load Balancer, a fully managed service enabling you to deploy, scale, and enhance the availability of third party NVAs in Azure, that builds on that capability. You can add your favorite third party appliance whether it is a firewall, inline DDoS appliance, deep packet inspection system, or even your own custom appliance into the network path transparently – all with a single click.

 

With Gateway Load Balancer, you can easily add or remove advanced network functionality without additional management overhead. You can think of Gateway LB, as providing the bump-in-the-wire technology you need to ensure all traffic to a public endpoint is first sent to the appliance before your application. What makes Gateway LB even more powerful is ensuring symmetrical flows or ensuring a consistent route to your network virtual appliance – without having to update routes manually. As a result, packets traverse the same network path in both directions to function are able to do so.

gateway-load-balancer-diagram.png

 

Inserting network virtual appliances in the path transparently is also known as service chaining. With Gateway LB, you can enable service chaining in Azure. Once chained to a Standard Public Load Balancer frontend or IP configuration on a virtual machine, no additional configuration is needed to ensure traffic to and from the application endpoint is sent to the Gateway LB. Traffic flows from the consumer virtual network to the provider virtual network and then returns to the consumer virtual network. Gateway Load Balancer exchanges application traffic with the appliance in it's backend pool using VXLAN encapsulation. This allows preservation of the content of the traffic. The consumer virtual network and provider virtual network can be in different subscriptions, tenants, or regions enabling greater flexibility and ease of management.

 

Gateway Load Balancer brings together a pass through load balancer to distribute your traffic at scale and a single entry and exit point for your traffic - with a single click. All you need to do is chain your application to a Gateway Load Balancer. You can scale up or scale down as needed. You can also leverage auto scale with virtual machine scale sets.


To get started with Gateway Load Balancer:

  1. Find your favorite virtual appliance in the Azure Marketplace
  2. Deploy the NVA instances
  3. Create a Gateway LB and place them in the backend pool
  4. Chain the Gateway LB to your Public IP or Standard Load Balancer frontend

Gateway Load Balancer Launch partners

Azure's Network Virtual Appliance partners are able to offer their managed solutions via SaaS - Software as a Service with Gateway Load Balancer. Appliance providers do not need to worry about scale, load balancing, or even availability, they can rely on Gateway LB to take care of that. Gateway Load Balancer has a rich ecosystem of partners within the Azure Marketplace available, so you can start leveraging the solution today. You can choose from a plethora of industry leading appliances in the Azure Marketplace. Here are links to their blogs to learn more.

 


Customers are already using Gateway LB for many scenarios - firewalls, advanced network security functions, deep packet inspection, analytics, IoT and so many more. Gateway LB integration with Standard DDoS has also enabled inline DDoS, you can ready more about it here.

Gateway Load Balancer is available across all Azure public regions, Government cloud regions, and China cloud regions. You can get started via the Azure Portal, CLI, PowerShell, templates, or Terraform. Learn more and deploy yours today.

 

 

 

 

Published on:

Learn more
Azure Networking Blog articles
Azure Networking Blog articles

Azure Networking Blog articles

Share post:

Related posts

Fundamentals of Azure DevOps with SQL projects

Building automated pipelines with your SQL database projects enables you to build a rich CI/CD ecosystem to ensure that your application is be...

13 hours ago

Upcoming Change: NTLM Removal in Git (libcurl) – Impact to Azure DevOps Server Customers

Overview In September 2026, NTLM support will be removed from libcurl, which is used by Git for HTTP(S) operations. As a result, Git operation...

1 day ago

What’s new across Microsoft SQL in 2026 so far (SQL Server, Azure SQL, and SQL database in Fabric)

We’re halfway through 2026, and Microsoft SQL has not slowed down. Since SQLCon/FabCon in March (where we released a ton of things, and those ...

1 day ago

Power Automate Flow — HTTP Trigger to Azure OpenAI

Build the secure Power Automate HTTP trigger flow that receives free text from the portal, calls Azure OpenAI using your smart-form-extract de...

3 days ago

Spring AI 2.0 is GA: Vector Search, Memory, and Agents on Azure Cosmos DB

The wait is over. Spring AI 2.0 is generally available, and Azure Cosmos DB is right there with it. With this release, Spring AI graduates int...

3 days ago
Stay up to date with latest Microsoft Dynamics 365 and Power Platform news!
* Yes, I agree to the privacy policy