Archive

Archive for the ‘Cloud Services – IaaS’ Category

#AzureSecurity Network Security Techniques for Azure #NSG #NVA #UDR #VPN #ExpressRoute #NTierArchitecture

January 18, 2017 Comments off

…Microsoft Azure platform allows customers to seamlessly extend their infrastructure into the cloud and build multi-tier architectures. Additionally, third parties can enable enhanced capabilities by offering security services and virtual appliances. This white paper provides an overview of security and architectural issues that customers should consider … It also covers creating more secure services in Azure virtual networks…

Read more here...

“…The following logic chart can direct you to a specific example of the many security techniques available with the Azure platform. For quick reference, find the example that best fits your case. For expanded explanations, continue reading through the paper….”

azurenetworksecurityflowchart

 

Example 1: Build a perimeter network (also known as DMZ, demilitarized zone, or screened subnet) to help protect applications with network security groups (NSGs).
Example 2: Build a perimeter network to help protect applications with a firewall and NSGs.
Example 3: Build a perimeter network to help protect networks with a firewall, user-defined route (UDR), and NSG.
Example 4: Add a hybrid connection with a site-to-site, virtual appliance virtual private network (VPN).
Example 5: Add a hybrid connection with a site-to-site, Azure VPN gateway.
Example 6: Add a hybrid connection with ExpressRoute.

Advertisements

#HotTopic #AzureUpdate – VNET Peering | Public #ChristmasEarly

July 28, 2016 Comments off

“…VNet Peering provides the ability to link two Virtual Networks in the same geo region directly. It allows Virtual Machine resources in both the VNets to connect directly through private IP addresses as if it were part of the same network. VNet peering achieves this by routing packets between the Virtual Networks through the internal Azure backbone network and thus does not involve any gateway in the path. This allows for a low latency, high bandwidth connection between the Virtual Machines in the VNets. VNet peering also allows transit through the peered VNets, thus a Network Virtual Appliance or a VPN gateway in one VNet can be used by a Virtual Machine in another peered VNet. Peering will work across VNets in different subscriptions and between an ARM (V2) and ASM (V1) VNet. It does not work between two ASM VNets….”  http://bit.ly/2awjIRe

#Azure – Design your application for High Availability #AvailabilitySet #LoadBalancer #FD #UD #CSP

July 26, 2016 Comments off

Follow best practices when you design your application for high availability….

To reduce the impact of downtime due to one or more of these events, we recommend the following high availability best practices for your virtual machines:

https://azure.microsoft.com/en-us/documentation/articles/virtual-machines-windows-manage-availability/

#Azure 101 Blob Storage…To Block or Page that is the question #Blob #Object #AzureStorage

July 15, 2016 Comments off

..Block blobs are optimized for streaming and storing cloud objects, and are a good choice for storing documents, media files, backups etc…..

Page blobs are optimized for representing IaaS disks and supporting random writes, and may be up to 1 TB in size. An Azure virtual machine network attached IaaS disk is a VHD stored as a page blob

Blob Storage stores unstructured object data. A blob can be any type of text or binary data, such as a document, media file, or application installer. Blob storage is also referred to as Object storage.

https://azure.microsoft.com/en-gb/documentation/articles/storage-introduction/

Azure Cloud Architect Boot Camp – Redmond August 1-5 2016

July 11, 2016 Comments off

Looking forward to this……AzureArchitectBootCampThis event is the same high quality technical training that internal Microsoft architect roles attend and it is now being extended to “elite and exclusive” Microsoft partners in Western Europe, France, Germany, United Kingdom, United States, and Canada.

The Azure Cloud Architect Boot Camp is a five-day immersive learning experience that includes general lecture sessions, case study workshops, executive panels, and hackathons – all delivered in partnership with Microsoft Engineering.

Sessions and topics such as the following will be covered: Azure storage, compute, Hybrid Net, Azure SDN, Recovery, Identity & Access Management, Service Fabric, IaaS under Azure resources, Dev Ops, App services, Machine Learning, R server, Cortana Analytics, Power BI, SQL DB, Azure Document DB, Azure Data Lake, Messaging, Event Hub, Stream Analytics, IoT, security and compliance, HPC, Azure Batch, Big Compute, Media Services, and Cloud Design Patterns.

Who should attend?

The Azure Cloud Architect Boot Camp is L300-L400 technical training exclusively oriented to those in “architect” roles at partner organizations who have advanced knowledge on Azure workloads. The training is NOT appropriate for those with only basic or intermediate knowledge of Azure.

 

#Azure101 How to install and configure #Azure #PowerShell

July 3, 2016 Comments off

What is Azure PowerShell?

Azure PowerShell is a set of modules that provide cmdlets to manage Azure with Windows PowerShell. You can use the cmdlets to create, test, deploy, and manage solutions and services delivered through the Azure platform. In most cases, the cmdlets can be used for the same tasks as the Azure Management Portal, such as creating and configuring cloud services, virtual machines, virtual networks, and web apps…..

https://azure.microsoft.com/en-us/documentation/articles/powershell-install-configure/

 

#Azure101 Azure subscription and service limits, quotas, and constraints

July 2, 2016 Comments off

“This document specifies some of the most common Microsoft Azure limits. Note that this does not currently cover all Azure services. Over time, these limits will be expanded and updated to cover more of the platform.

Note: If you want to raise the limit above the Default Limit, you can open an online customer support request at no charge. The limits cannot be raised above the Maximum Limit value in the tables below. If there is no Maximum Limit column, then the specified resource does not have adjustable limits.”

https://azure.microsoft.com/en-gb/documentation/articles/azure-subscription-service-limits/

%d bloggers like this: