Microsoft's Azure Application Gateway is a platform-managed, scalable, and highly available application delivery controller as a service with integrated web application firewall.
N/A
IBM DataPower Gateway
Score 8.0 out of 10
N/A
The IBM DataPower Gateway is a security and integration platform.
The best practice for a cloud environment is to use the tools provided by the cloud provider. That's why for Azure cloud, Azure Application Gateway is the most cost-effective solution that you can use. You can use a single Azure Application Gateway instance for load balancing WAF, URL-based routing, and more.
WebSphere DataPower Gateway is really beneficial if you are trying to integrate two or more systems. It provides you with comfort and peace of mind by creating a DMZ zone for the services which are going out of the intranet to hit external clients APIs. It is greatly recommended if you have a very high volume service or API which is being used by a majority of clients because it has a dedicated physical box present which takes care of memory, CPU and all such stuff. So, all your transactions happen at wire-speed.
Uploading images by multiple end-users from several applications like web, mobile, etc.
When there is a high volume of data requests, it helps to queue them based on the type of request. So it's easy to serve and reduce the loading time from the application layer.
An application gateway is useful when it can identify the type of details the user is requesting.
The foremost thing that we use DataPower is for implementing top-notch level security in different projects. We use it as a security gateway when some internal client or external client wants to make a call to any of our APIs. The basic security implementation which we do for the projects is SSL which can get more and more advanced based on the requirements of the project. Some clients want to implement OAuth, some want to implement SAML, and some are happy with a 2-way SSL handshake.
Another big advantage of DataPower is that it supports all the major industry message formats. It especially has an inbuilt component called the Multi-Protocol Gateway which comes installed in the box itself. It's the best thing if you want to convert an XML to JSON or vice-versa. It does all those conversions at wire-speed doesn't matter the volume of those transactions. We also use it with MQ while interacting with Mainframes and legacy systems. It supports all MQ properties and gives us the flexibility to change the message as well if required.
We have used DataPower in integration with ServiceNow as well to raise incidents and trigger emails to respective clients by writing custom scripts which continuously runs on the DataPower logs. As soon as they see any particular error for the services which are being monitored, they send an SNMP trap to ServiceNow with the error message and an incident is raised.
The old interface is being really missed by our team as the new WebUI interface is not that intuitive or easy to work with. It takes a lot of time to load. There should be an inbuilt wizard for creating a Rest service as well like there is for an XML based service.
IBM support is very knowledgeable but it's not that easy to reach them. They don't release the fix patches very soon which also becomes a big issue in certain situations where critical projects are involved.
Lastly, DataPower has its steep learning curve and it requires time and effort on your end to gain full control and make the most of the advanced features which it offers. Finding the right resource in the market is not that easy.
Most of the Application Gateway's features and services can be managed and re-configured via either the Azure Portal GUI or via the Azure Cloud Shell, thus allowing both CLI modes, i.e. Azure CLI (Bash) and Azure Powershell. The v2 version of Application Gateway has significantly improved performance during initial configuration or during re-configuration changes, thus making it much more usable for IT admins, as compared to v1.
HAProxy is an excellent load balancer that can also be used in cloud environments (and we do!), and is relied by hyper-large enterprises globally as well. However, HAProxy is a little bit more rudimentary in feature space, it does the core job well and securely, but doesn't provide any fancy additional features. Also, it takes more effort to deploy HAProxy than simply using an in-built feature in the Azure stack.
It has really taken our business to the next level. We have expanded and integrated with so many new vendors and for all those integrations DataPower is serving as our security gateway.
We don't have to depend on any other tool for doing the load balancing of the incoming requests as that is also taken care inside the WebSphere DataPower Gateway box itself, thereby distributing the load equally.
It has made our platform much more secure, uniform and robust to deal with any kind of incoming message format or threat as well due to its latest security mechanisms and huge processing power.
