Dan Toomey
Microsoft AzureMVP
FourScenarios foran
Integration Service Environment

Who am I?
• Senior Integration Specialist, Deloitte
• Microsoft Azure MVP
• MCSE, MCT, MCPD, MCTS BizTalk & Azure
• Pluralsight Author
• www.mindovermessaging.com
• @daniel2me

Kevin Lam
@KevinLam_msft
Acknowledgements
Sandro Pereira
@sandro_asp
Bill Chesnut
@BizTalkBill

Azure Integration Services:
Other Azure Services:
Functions Running arbitrary code
Event Hubs Ingesting/streaming/replaying events
Service Bus
Robust async messaging with sessions,
transactions, de-duplication, etc.
API Management
Publishing, security, discovery,
monitoring & monetization of APIs
Event Grid
Intelligent routing for event-driven
reactive integration solutions
Logic Apps
Workflow/Orchestration, Azure & SaaS
connectivity, and hybrid connections
iPaaS Offerings

Azure Integration Services:
Other Azure Services:
Functions Running arbitrary code
Event Hubs Ingesting/streaming/replaying events
Service Bus
Robust async messaging with sessions,
transactions, de-duplication, etc
API Management
Publishing, security, discovery,
monitoring & monetization of APIs
Event Grid
Intelligent routing for event-driven
reactive integration solutions
Logic Apps
Workflow/Orchestration, Azure & SaaS
connectivity, and hybrid connections
iPaaS Offerings w/VNET Integration
Premium Tier
Premium Tier
via Storage Queues
Premium Plan
Standard/Dedicated Tiers





?

Azure Integration Services:
Other Azure Services:
Functions Run arbitrary code
Event Hubs Stream/replay events
Service Bus
Robust async messaging with sessions,
transactions, de-duplication, etc
API Management
Publishing, security, discovery,
monitoring & monetization of APIs
Event Grid
Intelligent routing for event-driven
reactive integration solutions
Logic Apps
Workflow/Orchestration, Azure & SaaS
connectivity, and hybrid connections
iPaaS Offerings w/VNET Integration
Premium Tier
Premium Tier
via Storage Queues
Premium Plan
Standard/Dedicated Tiers





 ISE!!

Similar to App Service Environment…
On Prem
Azure
Virtual Network
App Service
Environment
Web Apps
API Apps
ILB
App GW
Internet
ExpressRoute (or Site 2 Site VPN)
SQL DB
Service Bus
Storage Queues
API
Management

…is an Integration Service Environment
Azure
Virtual Network
On Prem
Integration
Service
Environment
Logic Apps
Integration Account
API
Management
Internet
ExpressRoute (or Site 2 Site VPN)
SQL DB
Service Bus
Storage Queues
App GW

What’s so great about VNET integration?
Security / Isolation
Connectivity to resources within a VNET
Improved hybrid integration over OPDG:
https://www.serverless360.com/blog/consumption-vs-dedicated-billing-models

ISE Architecture

Logic Apps Architecture
Logic Apps Service

ISE Architecture
Subscription
VNET
ISE
Logic Apps Service
CORE ISE

ISE Architecture
Subscription
VNET
ISE
Logic Apps Service
CORE ISE
VNET

When to use an ISE?

Scenario #1:
Private Static Outbound IP Addresses

Scenario #1:
Private Static Outbound IP Addresses
You get your own private outbound IPs for ISE
connectors. With consumptionLogic Apps, you
also get a set of fixed outbound IPs … but they are
shared across that region.

DEMO #1:
Outbound IP addresses

Scenario #2:
Predictable Performance

Scenario #2:
Predictable Performance
ISE gives you the ability to explicitly control
scaling (as well as set auto-scaling). It also
provides predictable performance and eliminates
the “noisy neighbour” impact.

Scale Settings
https://docs.microsoft.com/en-us/azure/azure-monitor/platform/autoscale-understanding-settings

DEMO #2:
Scaling an ISE

Scenario #3:
Support for Additional Hybrid Connections
Your application requires hybrid connectivity that is not
supported OOTB via the On-Prem Data Gateway.

Scenario #3:
Support for Additional Hybrid Connections
Your application requires hybrid connectivity that is not
supported OOTB via the On-Prem Data Gateway.
ISE includes on-prem connectors that don’t exist
with OPDG, such as:
SFTP / FTP
SMTP
IBM 3270
HTTP Action

DEMO #3:
Hybrid Connectivity

Scenario #4:
Segregated Network Security

Securing Logic App Endpoints and Run History
https://aka.ms/integration-service-environment
With ISE:
All of the above, plus:
Can use Network Security Groups (NSG)
… but need certain ports opened for ISE to function!

Azure Solution Blueprints
https://servicetrust.microsoft.com/ViewPage/BlueprintOverview
 On-Prem connectivity
 Business Workflow
automation
 ASE & ISE
 API Management

Caveats & Tips

General Availability
Available everywhere Logic Apps are available except:

VNET Requirements
VNET must be in the same region & subscription
where you want your ISE
Requires four empty subnets with a minimum of 32
addresses
NOTE: If VNET does not appear in the ISE creation drop-down, shut down browser and re-open:
https://aka.ms/integration-service-environment

Network Changes
A change to the VNET may require restarting the ISE

Pricing Considerations
Fixed cost vs. consumption-based cost
Volume of use (# actions per month)
Use of an integration account
Need for isolated environment
Use of Enterprise Connectors
https://www.serverless360.com/blog/consumption-vs-dedicated-billing-models

Summary

Key Takeaways
ISE provides VNET integration for Logic Apps
ISE allows your entire integration solution to be
contained and controlled within a private network
ISE enables predictable and consistent performance

http://www.integrationdownunder.com/
Stickers!

References
Connect to Azure virtual networks from Azure Logic Apps by using an integration service environment (ISE)
https://aka.ms/integration-service-environment
Access to Azure Virtual Network resources from Azure Logic Apps by using integration service environments (ISEs)
https://docs.microsoft.com/en-us/azure/logic-apps/connect-virtual-network-vnet-isolated-environment-overview
ExpressRoute Overview
https://docs.microsoft.com/en-us/azure/expressroute/expressroute-introduction
Secure access in Azure Logic Apps
https://docs.microsoft.com/en-us/azure/logic-apps/logic-apps-securing-a-logic-app#restrict-incoming-ip-
addresses
Introducing Azure Logic Apps Integration Service Environment (ISE)
https://www.serverless360.com/blog/azure-logic-apps-integration-service-environment
Logic App Pricing
https://azure.microsoft.com/en-au/pricing/details/logic-apps/

dtoomey@deloitte.com.au
@daniel2me
mindovermessaging.com
linkedin.com/in/danieltoomey
github.com/dtoomey
Questions?