Scribd
Upload
89 views18 pages

Azure Virtual Network Guide

Uploaded by

Diego Murillo
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
89 views18 pages

Azure Virtual Network Guide

Uploaded by

Diego Murillo
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 18

Azure Virtual Networks

Tim Warner
AUTHOR/TECH EVANGELIST, PLURALSIGHT

@TechTrainerTim techtrainertim.com
Virtual network capabilities

Overview IP addressing (v4 and v6)


Name resolution
Virtual Network Capabilities
Virtual Network Capabilities

Vnet-to-Vnet
Isolation Traffic filtering
connectivity

Internet On-premises
Routing
connectivity connectivity
Virtual Network Components
Address space

DMZ subnet

Mgmt subnet

timw.info/vn1
Vnet-to-Vnet VPN

Vnets can be in different Azure regions

timw.info/vn22
Vnet Peering

Vnets must be in the


same Azure region
timw.info/vp1
App Service Environment (ASE)

Isolated on an Azure virtual network


Network security groups (NSGs)
Web application firewall (WAF)
Dedicated hardware resources
Requires high-end VM classes and
premium storage
Front-end
Back-end Can integrate an app with an
Involves more cost than App Services
PaaS
Azure virtual network

timw.info/ase1 © ITtransformation. All rights reserved.


Slide 8 of 24 http://www.ITtransformation.events
Let’s Build a Virtual Network!
Demo
Create a Vnet in the portal

Deploy a VM into the Vnet


IP Addressing and Name
Resolution
Public and Private IPv4 Addresses in Azure

Public IP addresses Private IP addresses


Virtual machine RFC 1918 range
Internet-facing load balancer Free
VPN gateway Derived from subnet network ID
Application gateway First 3 IP addresses are reserved by
Azure
First 5 “static” addresses are free;
others charged $0.004/hr Define static IP addresses
programmatically and never in the VM
You can’t request a static public IP itself
address
Azure Networking Resource Limits (Defaults;
Per Region/Per Subscription)

50 Vnets 1,000 subnets/Vnet 9 DNS servers/Vnet

4,096 private IP 20 static public IP 60 dynamic public IP


addresses/Vnet addresses addresses
Most public regions can host dual-stack
(IPv6 + IPv4)
- VMs
- External load balancers
IPv6 in Azure Must configure programmatically
- ARM template
- Azure PowerShell
- Azure CLI v2.0
Name Resolution in Azure

Azure-provided DNS Custom DNS servers Azure DNS


Automatic name All VMs within the Host your own public
resolution Vnet receive these and private DNS zones
addresses
Name Resolution Communications Flow

timw.info/vn2
Demo Use Azure PowerShell to deploy dual-
stack VMs with ELB
https://docs.microsoft.com/en-
us/azure/load-balancer/load-balancer-
ipv6-internet-ps
Summary

asdf
Next module: Network Security Groups

You might also like