Introduction

What Traffic Manager does (quick overview)
Common scenarios (when to use Traffic Manager)
Traffic Manager routing methods
Endpoint types supported
How Traffic Manager works (technical flow)
Creating and configuring a Traffic Manager profile
Configuring and tuning health probes
Best practices
Links and references

In this lesson you’ll learn what Azure Traffic Manager is, when to use it, and the core features that enable global application delivery. Traffic Manager is a DNS-based traffic load balancer that directs client requests to the most appropriate service endpoint. By combining DNS redirection with built-in health probes, Traffic Manager improves application availability and performance for multi-region and global deployments. What you’ll learn in this lesson:

Real-world scenarios where Traffic Manager improves availability, performance, and compliance.
How Traffic Manager performs DNS-based redirection and relies on health probes to route traffic to healthy endpoints.
The available routing methods and when to use each (Priority, Weighted, Performance, Geographic).
Endpoint types Traffic Manager supports (Azure, external, nested).
How to create and configure a Traffic Manager profile in the Azure portal and via CLI.
How to configure and tune health probes to maintain high availability.

Key considerations:

Traffic Manager acts at the DNS layer — client behavior is influenced by DNS TTLs and client-side DNS caching.
Use routing method and probe settings together to balance failover speed, stability, and control.

Traffic Manager operates at the DNS layer—routing decisions are made by resolving the Traffic Manager DNS name to different endpoint IPs. This means changes (like DNS TTLs) affect how quickly client behavior shifts after configuration updates.

What Traffic Manager does (quick overview)

Routes users to the “best” endpoint based on your chosen routing method (latency, priority, weight, or geography).
Monitors endpoint health using configurable probes (HTTP/HTTPS/TCP).
Redirects traffic away from unhealthy endpoints automatically.
Supports Azure and non-Azure endpoints, plus nested profiles for complex topologies and hybrid scenarios.

Common scenarios (when to use Traffic Manager)

Scenario	Why Traffic Manager helps	Example
Multi-region apps	Directs users to the lowest-latency or nearest region to reduce response times	Global web application serving users from multiple continents
Disaster recovery / failover	Provides automatic DNS-level failover to healthy endpoints	Primary site outage: failover to secondary region
Gradual rollouts / A/B testing	Distribute traffic across endpoints using weights	Incrementally route 10% of traffic to a new deployment
Data sovereignty / compliance	Route users by geography to meet legal requirements	Direct EU users to EU-hosted endpoints
Hybrid cloud / multi-cloud	Combine Azure and external endpoints under a single DNS name	Mix of Azure App Service and on-premise app endpoints

Traffic Manager routing methods

Routing method	Best use case	Behavior / Notes
Priority	Failover and disaster recovery	Traffic is sent to the highest-priority healthy endpoint. Use for active/passive setups.
Weighted	Gradual rollout and traffic distribution	Distributes traffic across endpoints based on weight values. Good for canary releases.
Performance	Reduce latency for users	Routes users to the endpoint with the lowest network latency. Relies on Azure latency measurements.
Geographic	Regulatory / compliance routing	Routes users by geographic location (country/region) to enforce data residency or localization.

Endpoint types supported

Endpoint type	What it represents	Typical use case
Azure endpoints	App Service, Virtual Machines, Cloud Services, Public IPs	Use for services hosted in Azure regions
External endpoints	Non-Azure public endpoints (HTTP/HTTPS/TCP)	Integrate on-prem or other cloud providers
Nested profiles	Another Traffic Manager profile	Build hierarchical routing (e.g., region-level then global-level routing)

How Traffic Manager works (technical flow)

Client resolves your Traffic Manager DNS name (e.g., myapp.trafficmanager.net).
Traffic Manager applies the selected routing method and returns the IP address of the chosen endpoint.
The client connects directly to that endpoint (Traffic Manager does not proxy application traffic).
Traffic Manager continuously probes endpoints (HTTP/HTTPS/TCP) and updates DNS responses when endpoint health changes.
DNS TTL values determine how quickly clients update cached responses after endpoint changes.

Creating and configuring a Traffic Manager profile

You can create and configure Traffic Manager in the Azure Portal, Azure CLI, or ARM templates. Below is a typical flow and an example CLI command. Steps in the Azure Portal:

Create a new Traffic Manager profile: choose a name and select the routing method.
Set the TTL (default is 30 seconds but choose based on desired failover speed vs DNS churn).
Add endpoints: select endpoint type, provide target (App Service, IP, FQDN) and set endpoint priority/weight/geolocation as required.
Configure health probes: protocol (HTTP/HTTPS/TCP), path (for HTTP/HTTPS), interval, timeout, and tolerated failures.
(Optional) Add nested profiles for multi-level routing.

Azure CLI example: create a simple Priority profile and add two endpoints

# Create Traffic Manager profile (Priority)
az network traffic-manager profile create \
  --name mytmprofile \
  --resource-group myResourceGroup \
  --routing-method Priority \
  --unique-dns-name mytmprofile-demo \
  --ttl 30

# Add primary Azure endpoint (App Service)
az network traffic-manager endpoint create \
  --name primary-endpoint \
  --profile-name mytmprofile \
  --resource-group myResourceGroup \
  --type azureEndpoints \
  --target-resource-id /subscriptions/<sub>/resourceGroups/<rg>/providers/Microsoft.Web/sites/myapp-primary \
  --priority 1

# Add secondary (failover) endpoint
az network traffic-manager endpoint create \
  --name secondary-endpoint \
  --profile-name mytmprofile \
  --resource-group myResourceGroup \
  --type azureEndpoints \
  --target-resource-id /subscriptions/<sub>/resourceGroups/<rg>/providers/Microsoft.Web/sites/myapp-secondary \
  --priority 2

Configuring and tuning health probes

Health probes determine endpoint health and directly affect failover behavior. Important probe settings:

Protocol: HTTP, HTTPS, or TCP (choose HTTP/HTTPS to validate application responses).
Path: For HTTP(S) probes, specify a lightweight path (e.g., /health or /status).
Interval: Frequency of probes (default often 30 seconds). Lower intervals detect failures faster but increase probe traffic.
Timeout: Time waited for probe response.
Tolerated failures / Unhealthy threshold: Number of consecutive probe failures before declaring an endpoint unhealthy.

Tuning recommendations:

Use an authenticated, minimal response health endpoint that returns consistent success codes.
If your app has short transient issues, increase tolerated failures to prevent flapping.
For rapid failover (strict SLA), lower TTL and probe interval—but balance against DNS and network costs.

Best practices

Ensure your health probe endpoint is lightweight and reliable (avoid heavy database operations).
Set an appropriate DNS TTL: short for fast failover, longer to reduce DNS queries.
Use Weighted routing for staged rollouts and Performance routing for global latency optimization.
Combine nested profiles and geographic routing for complex regulatory and resilience requirements.
Document and automate Traffic Manager configuration in IaC (ARM/Bicep/Terraform) for reproducibility.

Links and references

Watch Video

What is ExpressRoute

Configuring Traffic Manager

Configure Internet Access with Azure Virtual NAT

Configure Peering for an Express Route Deployment

Configure Public IP Addresses

Connect Devices to Networks with Point to Site VPN Connections

Connect Networks with Site to Site VPN Connections

Connect Remote Resources by using Azure Virtual WA Ns

Create a Network Virtual Appliance NVA in a Virtual Hub

Deploy Azure D Do S Protection

Deploy and configure Network Security Groups

Design Azure Application Gateway

Design Azure Front Door

Design Name Resolution for Azure Virtual Network

Design an Express Route deployment

Design and Implement Azure Firewall

Design and Implement Azure Load Balancer

Design and Implement Azure VPN Gateway

Design and implement Azure Bastion

Enable Cross V Net Connectivity

Explain Virtual Network Service Endpoints

Explore Azure Express Route

Explore Azure Traffic Manager

Explore Azure Virtual Networks

Explore Load Balancing Options in the Azure

Express Route Advanced Features

Get Network Security Recommendations with Microsoft Defender for Cloud

Implement Virtual Network Traffic Routing

Implement a Web Application Firewall

Monitor your networks using Azure Monitor

Monitor your networks using Azure Network Watcher

Private Link Services and Private Endpoints

Troubleshooting Express Route Connections

Working with Azure Firewall Manager

​What Traffic Manager does (quick overview)

​Common scenarios (when to use Traffic Manager)

​Traffic Manager routing methods

​Endpoint types supported

​How Traffic Manager works (technical flow)

​Creating and configuring a Traffic Manager profile

​Configuring and tuning health probes

​Best practices

​Links and references

Watch Video

What Traffic Manager does (quick overview)

Common scenarios (when to use Traffic Manager)

Traffic Manager routing methods

Endpoint types supported

How Traffic Manager works (technical flow)

Creating and configuring a Traffic Manager profile

Configuring and tuning health probes

Best practices

Links and references