Archive

Archive for the ‘Cloud Services’ Category

#AzureSecurity Network Security Techniques for Azure #NSG #NVA #UDR #VPN #ExpressRoute #NTierArchitecture

January 18, 2017 Comments off

…Microsoft Azure platform allows customers to seamlessly extend their infrastructure into the cloud and build multi-tier architectures. Additionally, third parties can enable enhanced capabilities by offering security services and virtual appliances. This white paper provides an overview of security and architectural issues that customers should consider … It also covers creating more secure services in Azure virtual networks…

Read more here...

“…The following logic chart can direct you to a specific example of the many security techniques available with the Azure platform. For quick reference, find the example that best fits your case. For expanded explanations, continue reading through the paper….”

azurenetworksecurityflowchart

 

Example 1: Build a perimeter network (also known as DMZ, demilitarized zone, or screened subnet) to help protect applications with network security groups (NSGs).
Example 2: Build a perimeter network to help protect applications with a firewall and NSGs.
Example 3: Build a perimeter network to help protect networks with a firewall, user-defined route (UDR), and NSG.
Example 4: Add a hybrid connection with a site-to-site, virtual appliance virtual private network (VPN).
Example 5: Add a hybrid connection with a site-to-site, Azure VPN gateway.
Example 6: Add a hybrid connection with ExpressRoute.

Bye Bye Azure RemoteApp your time is up…All Hail Citrix XenApp express #RIP_RemoteApp #Sunset

August 15, 2016 Comments off

“…In a surprising move, Microsoft have announced that they are sunsetting Azure RemoteApp in favour of Citrix XenApp “express” on August 31st, 2017C…”

” … Customers have provided us consistent feedback that they want a comprehensive, end-to-end, cloud-based solution for delivering Windows apps. The best way for us to deliver this is with Citrix through XenApp “express”, currently under development. XenApp “express” combines the simplicity of application remoting and the scalability of Azure with the security, management, and performance benefits of XenApp, to deliver Windows applications to any employee on any device…”

“…Given this, we will gradually wind down the delivery of Azure RemoteApp over the next year. We are absolutely committed to ensuring our existing Azure RemoteApp customers have a smooth transition. Additional options for customers include moving to a hosted solution through one of our many hosting partners, as well as Remote Desktop Services deployed on Azure IaaS…”

#HotTopic #AzureUpdate – VNET Peering | Public #ChristmasEarly

July 28, 2016 Comments off

“…VNet Peering provides the ability to link two Virtual Networks in the same geo region directly. It allows Virtual Machine resources in both the VNets to connect directly through private IP addresses as if it were part of the same network. VNet peering achieves this by routing packets between the Virtual Networks through the internal Azure backbone network and thus does not involve any gateway in the path. This allows for a low latency, high bandwidth connection between the Virtual Machines in the VNets. VNet peering also allows transit through the peered VNets, thus a Network Virtual Appliance or a VPN gateway in one VNet can be used by a Virtual Machine in another peered VNet. Peering will work across VNets in different subscriptions and between an ARM (V2) and ASM (V1) VNet. It does not work between two ASM VNets….”  http://bit.ly/2awjIRe

#Azure – Design your application for High Availability #AvailabilitySet #LoadBalancer #FD #UD #CSP

July 26, 2016 Comments off

Follow best practices when you design your application for high availability….

To reduce the impact of downtime due to one or more of these events, we recommend the following high availability best practices for your virtual machines:

https://azure.microsoft.com/en-us/documentation/articles/virtual-machines-windows-manage-availability/

#AllAbout Integrating #AzureAD with OnPremAD – #ADConnect #O365 #CSP

July 21, 2016 Comments off

In a nutshell Azure AD Connect is what will be required to integrate on-premises directories with Azure Active Directory, which is the identity and access management service used by Office365 Services; this will allow users to access Office365 services using their on-premises AD credentials.

There are several more advanced topics to cover different on-prem directory scenarios, but below are almost the basic min level of understanding required; everything else will build on these base concepts … advanced topics will be covered in another post.

This one gets my Goat… #Premises

July 18, 2016 Comments off

ITS-PREMISES

http://en.wikipedia.org/wiki/On-premise_software
“…On-premise software, is a common, although incorrect name for on-premises software. On-premises software is installed and run on computers on the premises (in the building) of the person or organisation using the software, rather than at a remote facility, such as at a server farm somewhere on the internet…
…. Grammatically, the correct term is ‘on-premises’ software, because the word premises does not have different singular and plural forms. Irrespective of correctness, however, ‘on-premise’ is sometimes used…”

#Azure 101 Blob Storage…To Block or Page that is the question #Blob #Object #AzureStorage

July 15, 2016 Comments off

..Block blobs are optimized for streaming and storing cloud objects, and are a good choice for storing documents, media files, backups etc…..

Page blobs are optimized for representing IaaS disks and supporting random writes, and may be up to 1 TB in size. An Azure virtual machine network attached IaaS disk is a VHD stored as a page blob

Blob Storage stores unstructured object data. A blob can be any type of text or binary data, such as a document, media file, or application installer. Blob storage is also referred to as Object storage.

https://azure.microsoft.com/en-gb/documentation/articles/storage-introduction/

%d bloggers like this: