Links

Microsoft Network TrafficManager

Best practices and references below are based on published guidance from the cloud service provider and may reference native capabilities the cloud service provider offers. If you are not using the native security capabilities, the same security requirement can be met using other security capabilities your organization utilizes

Asset Inventory

Design Guidance:

Microsoft.Network/trafficManagerProfiles

Name
Terraform
Id
Terraform
Tags
Terraform
Endpoints-Id
Terraform
Endpoints-Name
Terraform
Endpoints-Type
Terraform
Endpoints-Target Resource Id
Terraform

Information Flow Routing

Microsoft.Network/trafficManagerProfiles

Traffic Routing Method
Terraform
Endpoints-Target
Terraform
Endpoints-Endpoint Location
Terraform
Endpoints-Geo Mapping
Terraform
Endpoints-Subnets
Terraform

Name/Address Resolution Integrity

Microsoft.Network/trafficManagerProfiles

Dns Config-Relative Name
Terraform
Dns Config-Ttl
Terraform

Design for High Availability

Design Guidance:

Microsoft.Network/trafficManagerProfiles

Monitor Config-Profile Monitor Status
Terraform
Monitor Config-Interval In Seconds
Terraform
Monitor Config-Timeout In Seconds
Terraform
Monitor Config-Tolerated Number Of Failures
Terraform
Monitor Config-Expected Status Code Ranges
Terraform
Endpoints-Weight
Terraform
Endpoints-Priority
Terraform

TLS

Design Guidance:

Microsoft.Network/trafficManagerProfiles

Monitor Config-Protocol
Terraform

Load Balancing

Microsoft.Network/trafficManagerProfiles

Monitor Config-Port
Terraform
Monitor Config-Path
Terraform
Max Return
Terraform

Secure Response Headers

Design Guidance:

Microsoft.Network/trafficManagerProfiles

Monitor Config-Custom Headers
Terraform
Endpoints-Custom Headers
Terraform

Subnet Isolation

Design Guidance:

Microsoft.Network/trafficManagerProfiles

Subnets-First
Terraform
Subnets-Last
Terraform
Subnets-Scope
Terraform

Capacity Monitoring

Design Guidance:

Microsoft.Network/trafficManagerProfiles

Traffic View Enrollment Status
Terraform