Training

 Az 700

What is Virtual Network 

Azure Virtual Networks (VNets) are the fundamental building block of your private network in Azure. VNets enable you to build complex virtual networks that are similar to an on-premises network, with additional benefits of Azure infrastructure such as scale, availability, and isolation.

Each VNet you create has its own CIDR block and can be linked to other VNets and on-premises networks as long as the CIDR blocks don't overlap. You also have control of DNS server settings for VNets, and segmentation of the VNet into subnets.


Capabilities of Azure Virtual Networks

Azure VNets enable resources in Azure to securely communicate with each other, the internet, and on-premises networks.

  • Communication with the internet. All resources in a VNet can communicate outbound to the internet, by default. You can communicate inbound to a resource by assigning a public IP address or a public Load Balancer. You can also use public IP or public Load Balancer to manage your outbound connections.
  • Communication between Azure resources. There are three key mechanisms through which Azure resource can communicate: VNets, VNet service endpoints and VNet peering. Virtual Networks can connect not only VMs, but other Azure Resources, such as the App Service Environment, Azure Kubernetes Service, and Azure Virtual Machine Scale Sets. You can use service endpoints to connect to other Azure resource types, such as Azure SQL databases and storage accounts. When you create a VNet, your services and VMs within your VNet can communicate directly and securely with each other in the cloud.
  • Communication between on-premises resources. Securely extend your data center. You can connect your on-premises computers and networks to a virtual network using any of the following options: Point-to-site virtual private network (VPN), Site-to-site VPN, Azure ExpressRoute.
  • Filtering network traffic. You can filter network traffic between subnets using any combination of network security groups and network virtual appliances like firewalls, gateways, proxies, and Network Address Translation (NAT) services.
  • Routing network traffic. Azure routes traffic between subnets, connected virtual networks, on-premises networks, and the Internet, by default. You can implement route tables or border gateway protocol (BGP) routes to override the default routes Azure creates.

Azure Virtual Networks

Comments

Post a Comment

Popular posts from this blog

Script

# Change time to IST Set-TimeZone -Name “India Standard Time”  # Enable firewall to ping server each other :-   New-NetFirewallRule -DisplayName "Allow ICMPv4-In" -Protocol ICMPv4   # PowerShell command to install ISS # install IIS server role   Install-WindowsFeature -name Web-Server -IncludeManagementTools   # remove default htm file   remove-item   C:\inetpub\wwwroot\iisstart.htm   # Add a new htm file that displays server name   Add-Content -Path "C:\inetpub\wwwroot\iisstart.htm" -Value $("Hello World from " + $env:computername)     # Powershell command to install google chrome   $LocalTempDir = $env:TEMP; $ChromeInstaller = "ChromeInstaller.exe"; (new-object     System.Net.WebClient).DownloadFile('http://dl.google.com/chrome/install/375.126/chrome_installer.exe', "$LocalTempDir\$ChromeInstaller"); & "$LocalTempDir\$ChromeInstaller" /silent /install; $Process2Monitor = ...
Read more

Landing Zone

What is Azure landing zone   An Azure Landing Zone is a set of best practices and guidelines provided by Microsoft to help organizations establish a well-structured and standardized foundation for deploying workloads and applications in the Microsoft Azure cloud environment. It is essentially a framework that assists organizations in setting up their Azure environment with a focus on key areas such as security, governance, compliance, and operational efficiency. Here are the main aspects and objectives of an Azure Landing Zone: 1. ** Security **: Implementing robust security measures to protect data and resources in Azure, including network security, identity and access management, and compliance with security standards. 2. ** Governance **: Defining and enforcing policies and standards for resource provisioning, naming conventions, and compliance requirements. This ensures that Azure resources are created and managed consistently across the organization. 3. ** Networking **: ...
Read more

Migration

  Prepare a machine for the replication appliance The Migration and modernization tool uses a replication appliance to replicate machines to Azure. The replication appliance runs the following components. Configuration server : The configuration server coordinates communications between on-premises and Azure, and manages data replication. Process server : The process server acts as a replication gateway. It receives replication data; optimizes it with caching, compression, and encryption, and sends it to a cache storage account in Azure. Run a test migration When delta replication begins, you can run a test migration for the VMs, before running a full migration to Azure. We highly recommend that you do this at least once for each machine, before you migrate it. Running a test migration checks that migration will work as expected, without impacting the on-premises machines, which remain operational, and continue replicating. Test migration simulates the migration by creating an Azur...
Read more