SlideShare a Scribd company logo

Azure Networking: Innovative Features and Multi-VNet Topologies

Marius Zaharia
Marius Zaharia

Are you looking to deploy a more complex structure of resources in Azure, all secured and segregated by precise boundaries while closely communicating with each other? Following the arrival of the advanced IaaS networking features in Azure (network security groups, routing, multi-NIC, …) and their maturation in the last months, here is the moment for you to find a modern architectural vision of networking in Azure, with focus on multi-VNET / VPN topologies, and based on ARM deployment model.

Technology
1 of 33
Azure Multi-VNET Architectures and Topologies Marius Zaharia 03/12/2016
1 Business scenario 4 Scripting and automation 5 Technical solution Demo 2 Networking services Architecture and topologies3 6
Cellenza : des experts reconnus dans le Cloud, DevOps, Intégration, … 10 Azure C# ALM SQL Server Windows Client 1 4 Des publications : • Livres blancs (Cell’Insights) • http://www.cellenza.com/cellinsights • Articles dans Programmez! • Blog Cellenza • http://blog.cellenza.com • Organisation de TechEvent • Speakers lors de conférences Microsoft • TechDays, Azure Camp, …
Marius Zaharia Senior Cloud Architect Efficient & Visionary “Manage Teams Architectures Understand ComplexInternational + Mon expérience + Mon expertise IDÉATION CONCEPTION WIREFRAMES Marius apporte aux clients son expertise et expérience dans l’analyse, conception et développement d’applications complexes d’entreprise et d’intégration applicative et d’infrastructure basées principalement sur des technologies Microsoft. Son profile lui permet d’aborder les architectures Cloud Computing, SOA, hybridation et urbanisation des SI dans des missions polyvalentes solution/développement et IT pro. Marius travaille également dans les activités de Business Development et avant-vente de Cellenza, étant P-SELLER Azure (en partenariat avec Microsoft). Dans le monde communautaire, Marius est impliqué dans l’organisation d’AZUG FR – Azure User Group France et des conférences comme Global Azure Bootcamp, MS Cloud Summit, des meetups réguliers avec la communauté Azure etc. DevOps P-SELLER Azure
Introduction  “Azure VNET to VNET VPN, across regions and data centers: not so complicated”  Connection between multiple Azure Virtual Networks, in particular a VNET- to-VNET-to-VNET relationship  All based on PowerShell scripting and classic deployment in Azure  Azure moving to ARM deployment model and the new (modern) portal  Migration of existing features to ARM  Migration to the new portal  New innovative features
BUSINESS CASE
Business Case  Multiple environments communicating with each other  In the same Azure region  Across 2 regions  With the on-premises environments  Implement network connectivity between the environments  CONCRETE EXEMPLE: SQL Server AlwaysOn distributed cluster  1 master replica in Dublin  1 secondary replica (synchronous) in Dublin  1 secondary replica (asynchronous) in Amsterdam
NETWORKING SERVICES
Azure Networking
Azure Networks  Virtual Network: logical isolation of the Azure cloud dedicated to your subscription  Subnet: range of IP addresses in the VNet, divided for organization and security  Public IP: allow Azure resources to communicate with Internet and Azure public-facing services  Network Interface Card: interconnection between a Virtual Machine (VM) and the underlying software network  VPN Gateway: Azure service used to send network traffic between Azure virtual networks and other locations  ExpressRoute: lets you extend your on-premises networks into the Microsoft cloud over a dedicated private connection facilitated by a connectivity provider  Network Security Group: allow you to control inbound and outbound access to network interfaces, VMs, and subnets, based on a list of access control list (ACL)  User Defined Routes: specify the next hop for packets flowing to a specific subnet  IP Forwarding: Azure setting for a VM allowing it to receive traffic addressed to other destinations  Virtual Appliance: VM in your VNet that runs a software based appliance function, such as firewall, WAN optimization, or intrusion detection
Azure Networking: VNET Peering  VNet peering: a mechanism that connects two VNets in the same region through the Azure backbone network  Once peered, the two virtual networks appear as one for all connectivity purposes  Low-latency, high-bandwidth connection  Can connect ARM-to-ARM Vnet, or ARM-to-Classic  Requirements and key aspects  in the same Azure region.  non-overlapping IP address spaces.  no derived transitive relationship  Peering two different subscriptions possible, but under conditions*  Peering between ARM and Classic, under conditions*  No Classic to Classic  Networking bandwidth cap based on VM size still applies
Azure Networking: Load Balancer Azure Load Balancer  Layer 4 (TCP, UDP)  Services  Load balancing  Internet-facing  Internal  Traffic forwarding (NAT)  Features  Load balancer: hash-based distrib.  Port forwarding  Automatic configuration  Service health monitoring  Source NAT (SNAT)  multiple load-balanced IP addresses for VMs  Probes  TCP  HTTP/S  Guest agent (for PaaS only)
Azure networking: Traffic Manager  Controls the distribution of user traffic for service endpoints in different datacenters  uses DNS to direct client requests  Features  Traffic-routing methods  Priority  Weighted  Performance  Nested Traffic Manager profiles  Monitoring of endpoint health  Automatic failover
Azure Networking: Application Gateway  Application Gateway  Application Delivery Controller (ADC) as a service  layer 7 load balancing  Features  Web Application Firewall (Preview)  HTTP load balancing  Cookie-based session affinity  SSL offload; end to end SSL  URL-based content routing  Multi-site routing (up to 20)  Websocket support  Health monitoring  Advanced diagnostics
Load Balancer differences  Azure Load Balancer works at the transport layer (Layer 4 in the OSI network reference stack). It provides network-level distribution of traffic across instances of an application running in the same Azure data center.  Application Gateway works at the application layer (Layer 7 in the OSI network reference stack). It acts as a reverse-proxy service, terminating the client connection and forwarding requests to back- end endpoints.  Traffic Manager works at the DNS level. It uses DNS responses to direct end-user traffic to globally distributed endpoints. Clients then connect to those endpoints directly.
NETWORKING TOPOLOGIES
Azure Networking - Cross-Premises Connections Cross-premises connection options :  Site-to-Site – VPN connection over IPsec (IKE v1 and IKE v2). This type of connection requires a VPN physical or virtual (RRAS) device.  Point-to-Site – VPN connection over SSTP (Secure Socket Tunneling Protocol). This connection does not require a VPN device.  VNet-to-VNet – This type of connection is the same as a Site-to-Site configuration. VNet to VNet is a VPN connection over IPsec (IKE v1 and IKE v2). It does not require a VPN device.  Multi-Site – This is a variation of a Site-to-Site configuration that allows you to connect multiple on-premises sites to a virtual network.  ExpressRoute – ExpressRoute is a direct connection to Azure from your WAN, not over the public Internet. See the ExpressRoute Technical Overview and the ExpressRoute FAQ for more information.
SIMPLE NETWORKING TOPOLOGIES
On-premises NetworkVNET 1 Simple Hybrid Topology (point-to-point) VPN IPSec G W G W VNET – S2S IPSec VPN to On-premises Site-to-Site – VPN connection over IPsec (IKE v1 and IKE v2). This type of connection requires a VPN physical or virtual (RRAS) device.
On-premises NetworkVNET 1 Simple Hybrid Topology (point-to-point) VPN IPSec G W G WExpressRoute VNET – S2S IPSec VPN with on-premises VNET – ExpressRoute With on-premises Direct connection to Azure from your WAN, not over the public Internet.
VNET 2VNET 1 Simple Cloud-Only Topology VPN IPSec G W G W VNet-to-VNet – This type of connection is the same as a Site-to- Site configuration. It’s a VPN connection over IPsec (IKE v1 and IKE v2). It does not require a VPN device. (executed over MS Backbone transport layer)
VNET 2VNET 1 Simple Cloud-Only Topology G W G WExpressRoute VNet-to-VNet – This type of connection is the same as a Site-to- Site configuration. It’s a VPN connection over IPsec (IKE v1 and IKE v2). It does not require a VPN device. (executed over MS Backbone transport layer)
VNET 2VNET 1 Simple Cloud-Only Topology Peering VNET – peering to VNET Transport Backbone intra- datacenter
COMPLEX NETWORKING TOPOLOGIES
VNET 2 Complex Topologies VNET 4 VNET 5 VNET 3 VNET 1 « HUB & SPOKE » • Configure simple bidirectional communications between the master VNET end the satellite VNETs. • Any of the direct connectivity options described before (IPSec VPN, ExpressRoute if the case, or Peering) can be used here.
VNET 2 Complex Topologies VNET 3 VNET 1 « DAISY CHAIN » • Transitivity: the VNET 1 will communicate with the VNET 3 via specific routing configuration set up in the VNET 2 • advantage : getting profit of a connection already established for the usage of another VNET • inconvenient: if the VNET 2 (or its gateway) loses its connectivity, it will also affect the connectivity between the lateral VNETs.
VNET 1 Complex Topologies VNET 2 VNET 3 VNET 4 « (FULL) MESH » • Let you master the direct connectivity between various VNETs, without having dependencies on intermediate VNETs or their gateways • much more work to getting it done • it’s up to you to decide which VNET communicate with which one Do it in Azure? • VPN gateways & bidirectional connections • VNET peerings
TECHNICAL SOLUTION for our BUSINESS CASE
Technical Solution The solution is composed of 3 main segments: 1. VNET Peering between VNET2 and VNET1 (both VNETs being in the same region) 2. Site-to-Site VPN connection between VNET1 (Dublin) and VNET3 (Amsterdam), with VPN Gateways deployed in both VNETs 3. Transitivity for the VNET2 to VNET3 through the VPN Gateway 1. This connection transitivity will be configured in the VNET Peering settings directly
Technical Solution - Diagram VNET 3VNET 1 VPN IPSec G W G W VNET 2 DC DUBLIN DC AMSTERDAM Master (Primary) Replica Secondary Replica 1 Secondary Replica 2VNET 4
DEMO DEMO
Scripting - ARM
Thank you ! Go to the blogs : - blog.lecampusazure.net (EN) - blog.cellenza.com (FR) The sources are on github.com/lecampusazure

Recommended

A Deepdive into Azure Networking
A Deepdive into Azure NetworkingA Deepdive into Azure Networking
A Deepdive into Azure NetworkingKarim Vaes
 
Microsoft Azure Networking Basics
Microsoft Azure Networking BasicsMicrosoft Azure Networking Basics
Microsoft Azure Networking BasicsSai Kishore Naidu
 
Azure Networking (1).pptx
Azure Networking (1).pptxAzure Networking (1).pptx
Azure Networking (1).pptxRazith2
 
Part 01: Azure Virtual Networks – An Overview
Part 01: Azure Virtual Networks – An OverviewPart 01: Azure Virtual Networks – An Overview
Part 01: Azure Virtual Networks – An OverviewNeeraj Kumar
 
Azure vnet
Azure vnetAzure vnet
Azure vnetzekeLabs Technologies
 
Let's Talk About: Azure Networking
Let's Talk About: Azure NetworkingLet's Talk About: Azure Networking
Let's Talk About: Azure NetworkingPedro Sousa
 
Azure Security and Management
Azure Security and ManagementAzure Security and Management
Azure Security and ManagementAllen Brokken
 
Azure security and Compliance
Azure security and ComplianceAzure security and Compliance
Azure security and ComplianceKarina Matos
 

Recommended

A Deepdive into Azure Networking
A Deepdive into Azure NetworkingA Deepdive into Azure Networking
A Deepdive into Azure NetworkingKarim Vaes
 
Microsoft Azure Networking Basics
Microsoft Azure Networking BasicsMicrosoft Azure Networking Basics
Microsoft Azure Networking BasicsSai Kishore Naidu
 
Azure Networking (1).pptx
Azure Networking (1).pptxAzure Networking (1).pptx
Azure Networking (1).pptxRazith2
 
Part 01: Azure Virtual Networks – An Overview
Part 01: Azure Virtual Networks – An OverviewPart 01: Azure Virtual Networks – An Overview
Part 01: Azure Virtual Networks – An OverviewNeeraj Kumar
 
Azure vnet
Azure vnetAzure vnet
Azure vnetzekeLabs Technologies
 
Let's Talk About: Azure Networking
Let's Talk About: Azure NetworkingLet's Talk About: Azure Networking
Let's Talk About: Azure NetworkingPedro Sousa
 
Azure Security and Management
Azure Security and ManagementAzure Security and Management
Azure Security and ManagementAllen Brokken
 
Azure security and Compliance
Azure security and ComplianceAzure security and Compliance
Azure security and ComplianceKarina Matos
 
Building an Enterprise-Grade Azure Governance Model
Building an Enterprise-Grade Azure Governance ModelBuilding an Enterprise-Grade Azure Governance Model
Building an Enterprise-Grade Azure Governance ModelKarl Ots
 
Azure governance
Azure governanceAzure governance
Azure governancegirish goudar
 
Azure Migrate
Azure MigrateAzure Migrate
Azure MigrateMustafa
 
Azure Security Overview
Azure Security OverviewAzure Security Overview
Azure Security OverviewAllen Brokken
 
Azure privatelink
Azure privatelinkAzure privatelink
Azure privatelinkUdaiappa Ramachandran
 
Azure Cloud Governance
Azure Cloud GovernanceAzure Cloud Governance
Azure Cloud GovernanceJonathan Wade
 
Govern your Azure environment through Azure Policy
Govern your Azure environment through Azure PolicyGovern your Azure environment through Azure Policy
Govern your Azure environment through Azure PolicyMicrosoft Tech Community
 
Azure Service Endpoints vs. Private Links
Azure Service Endpoints vs. Private LinksAzure Service Endpoints vs. Private Links
Azure Service Endpoints vs. Private LinksMatthias Güntert
 
Azure Governance
Azure GovernanceAzure Governance
Azure GovernanceBenjamin Hüpeden
 
[Azure Governance] Lesson 4 : Azure Policy
[Azure Governance] Lesson 4 : Azure Policy[Azure Governance] Lesson 4 : Azure Policy
[Azure Governance] Lesson 4 : Azure Policy☁ Hicham KADIRI ☁
 
gkkAwscloudpractitioneressentialstraining
gkkAwscloudpractitioneressentialstraininggkkAwscloudpractitioneressentialstraining
gkkAwscloudpractitioneressentialstrainingAnne Starr
 
Azure Cloud Adoption Framework + Governance - Sana Khan and Jay Kumar
Azure Cloud Adoption Framework + Governance - Sana Khan and Jay Kumar Azure Cloud Adoption Framework + Governance - Sana Khan and Jay Kumar
Azure Cloud Adoption Framework + Governance - Sana Khan and Jay Kumar Timothy McAliley
 
Azure key vault
Azure key vaultAzure key vault
Azure key vaultRahul Nath
 
Azure Fundamentals || AZ-900
Azure Fundamentals || AZ-900Azure Fundamentals || AZ-900
Azure Fundamentals || AZ-900thisiswali
 
Microsoft Azure Security Overview
Microsoft Azure Security OverviewMicrosoft Azure Security Overview
Microsoft Azure Security OverviewAlert Logic
 
Azure virtual network
Azure virtual networkAzure virtual network
Azure virtual networkLalit Rawat
 
Stephane Lapointe: Governance in Azure, keep control of your environments
Stephane Lapointe: Governance in Azure, keep control of your environmentsStephane Lapointe: Governance in Azure, keep control of your environments
Stephane Lapointe: Governance in Azure, keep control of your environmentsMSDEVMTL
 
Introduction to Azure
Introduction to AzureIntroduction to Azure
Introduction to AzureRobert Crane
 
Azure Key Vault - Getting Started
Azure Key Vault - Getting StartedAzure Key Vault - Getting Started
Azure Key Vault - Getting StartedTaswar Bhatti
 
Azure Migration Program Overview
Azure Migration Program OverviewAzure Migration Program Overview
Azure Migration Program OverviewNicholas Vossburg
 
Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...
Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...
Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...Microsoft
 
Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...
Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...
Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...Shawn Ismail
 

More Related Content

What's hot

Building an Enterprise-Grade Azure Governance Model
Building an Enterprise-Grade Azure Governance ModelBuilding an Enterprise-Grade Azure Governance Model
Building an Enterprise-Grade Azure Governance ModelKarl Ots
 
Azure Migrate
Azure MigrateAzure Migrate
Azure MigrateMustafa
 
Azure Security Overview
Azure Security OverviewAzure Security Overview
Azure Security OverviewAllen Brokken
 
Azure Cloud Governance
Azure Cloud GovernanceAzure Cloud Governance
Azure Cloud GovernanceJonathan Wade
 
Govern your Azure environment through Azure Policy
Govern your Azure environment through Azure PolicyGovern your Azure environment through Azure Policy
Govern your Azure environment through Azure PolicyMicrosoft Tech Community
 
Azure Service Endpoints vs. Private Links
Azure Service Endpoints vs. Private LinksAzure Service Endpoints vs. Private Links
Azure Service Endpoints vs. Private LinksMatthias Güntert
 
[Azure Governance] Lesson 4 : Azure Policy
[Azure Governance] Lesson 4 : Azure Policy[Azure Governance] Lesson 4 : Azure Policy
[Azure Governance] Lesson 4 : Azure Policy☁ Hicham KADIRI ☁
 
gkkAwscloudpractitioneressentialstraining
gkkAwscloudpractitioneressentialstraininggkkAwscloudpractitioneressentialstraining
gkkAwscloudpractitioneressentialstrainingAnne Starr
 
Azure Cloud Adoption Framework + Governance - Sana Khan and Jay Kumar
Azure Cloud Adoption Framework + Governance - Sana Khan and Jay Kumar Azure Cloud Adoption Framework + Governance - Sana Khan and Jay Kumar
Azure Cloud Adoption Framework + Governance - Sana Khan and Jay Kumar Timothy McAliley
 
Azure key vault
Azure key vaultAzure key vault
Azure key vaultRahul Nath
 
Azure Fundamentals || AZ-900
Azure Fundamentals || AZ-900Azure Fundamentals || AZ-900
Azure Fundamentals || AZ-900thisiswali
 
Microsoft Azure Security Overview
Microsoft Azure Security OverviewMicrosoft Azure Security Overview
Microsoft Azure Security OverviewAlert Logic
 
Azure virtual network
Azure virtual networkAzure virtual network
Azure virtual networkLalit Rawat
 
Stephane Lapointe: Governance in Azure, keep control of your environments
Stephane Lapointe: Governance in Azure, keep control of your environmentsStephane Lapointe: Governance in Azure, keep control of your environments
Stephane Lapointe: Governance in Azure, keep control of your environmentsMSDEVMTL
 
Introduction to Azure
Introduction to AzureIntroduction to Azure
Introduction to AzureRobert Crane
 
Azure Key Vault - Getting Started
Azure Key Vault - Getting StartedAzure Key Vault - Getting Started
Azure Key Vault - Getting StartedTaswar Bhatti
 
Azure Migration Program Overview
Azure Migration Program OverviewAzure Migration Program Overview
Azure Migration Program OverviewNicholas Vossburg
 

What's hot (20)

Building an Enterprise-Grade Azure Governance Model
Building an Enterprise-Grade Azure Governance ModelBuilding an Enterprise-Grade Azure Governance Model
Building an Enterprise-Grade Azure Governance Model
 
Azure governance
Azure governanceAzure governance
Azure governance
 
Azure Migrate
Azure MigrateAzure Migrate
Azure Migrate
 
Azure Security Overview
Azure Security OverviewAzure Security Overview
Azure Security Overview
 
Azure privatelink
Azure privatelinkAzure privatelink
Azure privatelink
 
Azure Cloud Governance
Azure Cloud GovernanceAzure Cloud Governance
Azure Cloud Governance
 
Govern your Azure environment through Azure Policy
Govern your Azure environment through Azure PolicyGovern your Azure environment through Azure Policy
Govern your Azure environment through Azure Policy
 
Azure Service Endpoints vs. Private Links
Azure Service Endpoints vs. Private LinksAzure Service Endpoints vs. Private Links
Azure Service Endpoints vs. Private Links
 
Azure Governance
Azure GovernanceAzure Governance
Azure Governance
 
[Azure Governance] Lesson 4 : Azure Policy
[Azure Governance] Lesson 4 : Azure Policy[Azure Governance] Lesson 4 : Azure Policy
[Azure Governance] Lesson 4 : Azure Policy
 
gkkAwscloudpractitioneressentialstraining
gkkAwscloudpractitioneressentialstraininggkkAwscloudpractitioneressentialstraining
gkkAwscloudpractitioneressentialstraining
 
Azure Cloud Adoption Framework + Governance - Sana Khan and Jay Kumar
Azure Cloud Adoption Framework + Governance - Sana Khan and Jay Kumar Azure Cloud Adoption Framework + Governance - Sana Khan and Jay Kumar
Azure Cloud Adoption Framework + Governance - Sana Khan and Jay Kumar
 
Azure key vault
Azure key vaultAzure key vault
Azure key vault
 
Azure Fundamentals || AZ-900
Azure Fundamentals || AZ-900Azure Fundamentals || AZ-900
Azure Fundamentals || AZ-900
 
Microsoft Azure Security Overview
Microsoft Azure Security OverviewMicrosoft Azure Security Overview
Microsoft Azure Security Overview
 
Azure virtual network
Azure virtual networkAzure virtual network
Azure virtual network
 
Stephane Lapointe: Governance in Azure, keep control of your environments
Stephane Lapointe: Governance in Azure, keep control of your environmentsStephane Lapointe: Governance in Azure, keep control of your environments
Stephane Lapointe: Governance in Azure, keep control of your environments
 
Introduction to Azure
Introduction to AzureIntroduction to Azure
Introduction to Azure
 
Azure Key Vault - Getting Started
Azure Key Vault - Getting StartedAzure Key Vault - Getting Started
Azure Key Vault - Getting Started
 
Azure Migration Program Overview
Azure Migration Program OverviewAzure Migration Program Overview
Azure Migration Program Overview
 

Viewers also liked

Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...
Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...
Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...Microsoft
 
Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...
Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...
Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...Shawn Ismail
 
Gouvernance et sécurisation de vos ressources cloud avec Azure Active Directo...
Gouvernance et sécurisation de vos ressources cloud avec Azure Active Directo...Gouvernance et sécurisation de vos ressources cloud avec Azure Active Directo...
Gouvernance et sécurisation de vos ressources cloud avec Azure Active Directo...Marius Zaharia
 
Session iot gwab 2014 paris
Session iot gwab 2014 parisSession iot gwab 2014 paris
Session iot gwab 2014 parisMarius Zaharia
 
Enter The Matrix Securing Azure’s Assets
Enter The Matrix Securing Azure’s AssetsEnter The Matrix Securing Azure’s Assets
Enter The Matrix Securing Azure’s AssetsBizTalk360
 
Ro IT Webinar - Masina Virtuala, calatorie catre cloud
Ro IT Webinar - Masina Virtuala, calatorie catre cloudRo IT Webinar - Masina Virtuala, calatorie catre cloud
Ro IT Webinar - Masina Virtuala, calatorie catre cloudMarius Zaharia
 
Soyez le maître du PRA - MS Cloud Summit Paris 2017
Soyez le maître du PRA - MS Cloud Summit Paris 2017Soyez le maître du PRA - MS Cloud Summit Paris 2017
Soyez le maître du PRA - MS Cloud Summit Paris 2017Marius Zaharia
 
Understanding Azure Networking Services
Understanding Azure Networking ServicesUnderstanding Azure Networking Services
Understanding Azure Networking ServicesInCycleSoftware
 
Automati(sati)on de votre application Azure
Automati(sati)on de votre application AzureAutomati(sati)on de votre application Azure
Automati(sati)on de votre application AzureMarius Zaharia
 
Spinnaker for Azure
Spinnaker for AzureSpinnaker for Azure
Spinnaker for AzureLarry Guger
 
Sql Saturday Paris 2016 - De StreamInsight à Azure Stream Analytics
Sql Saturday Paris 2016 - De StreamInsight à Azure Stream Analytics Sql Saturday Paris 2016 - De StreamInsight à Azure Stream Analytics
Sql Saturday Paris 2016 - De StreamInsight à Azure Stream Analytics Marius Zaharia
 
Azure Web App services
Azure Web App servicesAzure Web App services
Azure Web App servicesAlexey Bokov
 
STB Proposal Presentation - Aviatrix
STB Proposal Presentation - AviatrixSTB Proposal Presentation - Aviatrix
STB Proposal Presentation - AviatrixTeamAviatrix
 
Identite-as-a-service pour vos applications B2C - MS Cloud Summit Paris 2017
Identite-as-a-service pour vos applications B2C - MS Cloud Summit Paris 2017Identite-as-a-service pour vos applications B2C - MS Cloud Summit Paris 2017
Identite-as-a-service pour vos applications B2C - MS Cloud Summit Paris 2017Marius Zaharia
 
Azure vnet connectivity solutions
Azure vnet connectivity solutionsAzure vnet connectivity solutions
Azure vnet connectivity solutionsswapnilrkambli
 
Microsoft Azure Training - [11]Azure Virtual Networks -Part 5 -Cross-premises...
Microsoft Azure Training - [11]Azure Virtual Networks -Part 5 -Cross-premises...Microsoft Azure Training - [11]Azure Virtual Networks -Part 5 -Cross-premises...
Microsoft Azure Training - [11]Azure Virtual Networks -Part 5 -Cross-premises...Shawn Ismail
 
CENTUM VP - 2014 version
CENTUM VP - 2014 versionCENTUM VP - 2014 version
CENTUM VP - 2014 versionYokogawa
 
Webinar: ForgeRock Identity Platform Preview (Dec 2015)
Webinar: ForgeRock Identity Platform Preview (Dec 2015)Webinar: ForgeRock Identity Platform Preview (Dec 2015)
Webinar: ForgeRock Identity Platform Preview (Dec 2015)ForgeRock
 

Viewers also liked (20)

Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...
Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...
Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...
 
Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...
Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...
Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...
 
Gouvernance et sécurisation de vos ressources cloud avec Azure Active Directo...
Gouvernance et sécurisation de vos ressources cloud avec Azure Active Directo...Gouvernance et sécurisation de vos ressources cloud avec Azure Active Directo...
Gouvernance et sécurisation de vos ressources cloud avec Azure Active Directo...
 
Session iot gwab 2014 paris
Session iot gwab 2014 parisSession iot gwab 2014 paris
Session iot gwab 2014 paris
 
Enter The Matrix Securing Azure’s Assets
Enter The Matrix Securing Azure’s AssetsEnter The Matrix Securing Azure’s Assets
Enter The Matrix Securing Azure’s Assets
 
Ro IT Webinar - Masina Virtuala, calatorie catre cloud
Ro IT Webinar - Masina Virtuala, calatorie catre cloudRo IT Webinar - Masina Virtuala, calatorie catre cloud
Ro IT Webinar - Masina Virtuala, calatorie catre cloud
 
Soyez le maître du PRA - MS Cloud Summit Paris 2017
Soyez le maître du PRA - MS Cloud Summit Paris 2017Soyez le maître du PRA - MS Cloud Summit Paris 2017
Soyez le maître du PRA - MS Cloud Summit Paris 2017
 
Patterns azure cloud
Patterns azure cloudPatterns azure cloud
Patterns azure cloud
 
Understanding Azure Networking Services
Understanding Azure Networking ServicesUnderstanding Azure Networking Services
Understanding Azure Networking Services
 
Automati(sati)on de votre application Azure
Automati(sati)on de votre application AzureAutomati(sati)on de votre application Azure
Automati(sati)on de votre application Azure
 
Spinnaker for Azure
Spinnaker for AzureSpinnaker for Azure
Spinnaker for Azure
 
Sql Saturday Paris 2016 - De StreamInsight à Azure Stream Analytics
Sql Saturday Paris 2016 - De StreamInsight à Azure Stream Analytics Sql Saturday Paris 2016 - De StreamInsight à Azure Stream Analytics
Sql Saturday Paris 2016 - De StreamInsight à Azure Stream Analytics
 
Azure Web App services
Azure Web App servicesAzure Web App services
Azure Web App services
 
STB Proposal Presentation - Aviatrix
STB Proposal Presentation - AviatrixSTB Proposal Presentation - Aviatrix
STB Proposal Presentation - Aviatrix
 
Identite-as-a-service pour vos applications B2C - MS Cloud Summit Paris 2017
Identite-as-a-service pour vos applications B2C - MS Cloud Summit Paris 2017Identite-as-a-service pour vos applications B2C - MS Cloud Summit Paris 2017
Identite-as-a-service pour vos applications B2C - MS Cloud Summit Paris 2017
 
Azure vnet connectivity solutions
Azure vnet connectivity solutionsAzure vnet connectivity solutions
Azure vnet connectivity solutions
 
Serial buses
Serial busesSerial buses
Serial buses
 
Microsoft Azure Training - [11]Azure Virtual Networks -Part 5 -Cross-premises...
Microsoft Azure Training - [11]Azure Virtual Networks -Part 5 -Cross-premises...Microsoft Azure Training - [11]Azure Virtual Networks -Part 5 -Cross-premises...
Microsoft Azure Training - [11]Azure Virtual Networks -Part 5 -Cross-premises...
 
CENTUM VP - 2014 version
CENTUM VP - 2014 versionCENTUM VP - 2014 version
CENTUM VP - 2014 version
 
Webinar: ForgeRock Identity Platform Preview (Dec 2015)
Webinar: ForgeRock Identity Platform Preview (Dec 2015)Webinar: ForgeRock Identity Platform Preview (Dec 2015)
Webinar: ForgeRock Identity Platform Preview (Dec 2015)
 

Similar to Azure Networking: Innovative Features and Multi-VNet Topologies

Azure Network and Infrastructure
Azure Network and InfrastructureAzure Network and Infrastructure
Azure Network and InfrastructurePhi Huynh
 
VMware NSX primer 2014
VMware NSX primer 2014VMware NSX primer 2014
VMware NSX primer 2014Sanjay Basu
 
CCI2019 - Architecting and Implementing Azure Networking
CCI2019 - Architecting and Implementing Azure NetworkingCCI2019 - Architecting and Implementing Azure Networking
CCI2019 - Architecting and Implementing Azure Networkingwalk2talk srl
 
Global Azure Bootcamp 2018 - Azure Network Security
Global Azure Bootcamp 2018 - Azure Network SecurityGlobal Azure Bootcamp 2018 - Azure Network Security
Global Azure Bootcamp 2018 - Azure Network SecurityScott Hoag
 
Server And Hardware Virtualization_Aakash1.1
Server And Hardware Virtualization_Aakash1.1Server And Hardware Virtualization_Aakash1.1
Server And Hardware Virtualization_Aakash1.1Aakash Agarwal
 
An Introduction to VMware NSX
An Introduction to VMware NSXAn Introduction to VMware NSX
An Introduction to VMware NSXScott Lowe
 
Brk30176 enterprise class networking in azure
Brk30176 enterprise class networking in azureBrk30176 enterprise class networking in azure
Brk30176 enterprise class networking in azureAbou CONDE
 
Kubernetes networking in AWS
Kubernetes networking in AWSKubernetes networking in AWS
Kubernetes networking in AWSZvika Gazit
 
Eucalyptus - An Open-source Infrastructure for Cloud Computing
Eucalyptus - An Open-source Infrastructure for Cloud ComputingEucalyptus - An Open-source Infrastructure for Cloud Computing
Eucalyptus - An Open-source Infrastructure for Cloud Computingelliando dias
 
Reference design for v mware nsx
Reference design for v mware nsxReference design for v mware nsx
Reference design for v mware nsxsolarisyougood
 
SDN 101: Software Defined Networking Course - Sameh Zaghloul/IBM - 2014
SDN 101: Software Defined Networking Course - Sameh Zaghloul/IBM - 2014SDN 101: Software Defined Networking Course - Sameh Zaghloul/IBM - 2014
SDN 101: Software Defined Networking Course - Sameh Zaghloul/IBM - 2014SAMeh Zaghloul
 
The Data Center Network Evolution
The Data Center Network EvolutionThe Data Center Network Evolution
The Data Center Network EvolutionCisco Canada
 
VMUGbe 21 Filip Verloy
VMUGbe 21 Filip VerloyVMUGbe 21 Filip Verloy
VMUGbe 21 Filip VerloyFilip Verloy
 
#NSD14 - Sécuriser l'infrastructure réseau des datacenters
#NSD14 - Sécuriser l'infrastructure réseau des datacenters#NSD14 - Sécuriser l'infrastructure réseau des datacenters
#NSD14 - Sécuriser l'infrastructure réseau des datacentersNetSecure Day
 
VMware nsx network virtualization tool
VMware nsx network virtualization toolVMware nsx network virtualization tool
VMware nsx network virtualization toolDaljeet Singh Randhawa
 
Banv meetup-contrail
Banv meetup-contrailBanv meetup-contrail
Banv meetup-contrailnvirters
 

Similar to Azure Networking: Innovative Features and Multi-VNet Topologies (20)

Azure Network and Infrastructure
Azure Network and InfrastructureAzure Network and Infrastructure
Azure Network and Infrastructure
 
VMware NSX primer 2014
VMware NSX primer 2014VMware NSX primer 2014
VMware NSX primer 2014
 
CCI2019 - Architecting and Implementing Azure Networking
CCI2019 - Architecting and Implementing Azure NetworkingCCI2019 - Architecting and Implementing Azure Networking
CCI2019 - Architecting and Implementing Azure Networking
 
Global Azure Bootcamp 2018 - Azure Network Security
Global Azure Bootcamp 2018 - Azure Network SecurityGlobal Azure Bootcamp 2018 - Azure Network Security
Global Azure Bootcamp 2018 - Azure Network Security
 
Server And Hardware Virtualization_Aakash1.1
Server And Hardware Virtualization_Aakash1.1Server And Hardware Virtualization_Aakash1.1
Server And Hardware Virtualization_Aakash1.1
 
An Introduction to VMware NSX
An Introduction to VMware NSXAn Introduction to VMware NSX
An Introduction to VMware NSX
 
Brk30176 enterprise class networking in azure
Brk30176 enterprise class networking in azureBrk30176 enterprise class networking in azure
Brk30176 enterprise class networking in azure
 
Kubernetes networking in AWS
Kubernetes networking in AWSKubernetes networking in AWS
Kubernetes networking in AWS
 
Cloud Computing
Cloud ComputingCloud Computing
Cloud Computing
 
Eucalyptus - An Open-source Infrastructure for Cloud Computing
Eucalyptus - An Open-source Infrastructure for Cloud ComputingEucalyptus - An Open-source Infrastructure for Cloud Computing
Eucalyptus - An Open-source Infrastructure for Cloud Computing
 
10052016115136.pptx
10052016115136.pptx10052016115136.pptx
10052016115136.pptx
 
CloudComp 2015 - SDN-Cloud Testbed with Hyper-convergent SmartX Boxes
CloudComp 2015 - SDN-Cloud Testbed with Hyper-convergent SmartX BoxesCloudComp 2015 - SDN-Cloud Testbed with Hyper-convergent SmartX Boxes
CloudComp 2015 - SDN-Cloud Testbed with Hyper-convergent SmartX Boxes
 
Reference design for v mware nsx
Reference design for v mware nsxReference design for v mware nsx
Reference design for v mware nsx
 
SDN 101: Software Defined Networking Course - Sameh Zaghloul/IBM - 2014
SDN 101: Software Defined Networking Course - Sameh Zaghloul/IBM - 2014SDN 101: Software Defined Networking Course - Sameh Zaghloul/IBM - 2014
SDN 101: Software Defined Networking Course - Sameh Zaghloul/IBM - 2014
 
The Data Center Network Evolution
The Data Center Network EvolutionThe Data Center Network Evolution
The Data Center Network Evolution
 
Contrail Enabler for agile cloud services
Contrail Enabler for agile cloud servicesContrail Enabler for agile cloud services
Contrail Enabler for agile cloud services
 
VMUGbe 21 Filip Verloy
VMUGbe 21 Filip VerloyVMUGbe 21 Filip Verloy
VMUGbe 21 Filip Verloy
 
#NSD14 - Sécuriser l'infrastructure réseau des datacenters
#NSD14 - Sécuriser l'infrastructure réseau des datacenters#NSD14 - Sécuriser l'infrastructure réseau des datacenters
#NSD14 - Sécuriser l'infrastructure réseau des datacenters
 
VMware nsx network virtualization tool
VMware nsx network virtualization toolVMware nsx network virtualization tool
VMware nsx network virtualization tool
 
Banv meetup-contrail
Banv meetup-contrailBanv meetup-contrail
Banv meetup-contrail
 

More from Marius Zaharia

Multi-Tenant Identity and Azure Resource Governance - Identity Days 2019
Multi-Tenant Identity and Azure Resource Governance - Identity Days 2019Multi-Tenant Identity and Azure Resource Governance - Identity Days 2019
Multi-Tenant Identity and Azure Resource Governance - Identity Days 2019Marius Zaharia
 
Onboard a Historical Company on the Cloud Journey
Onboard a Historical Company on the Cloud JourneyOnboard a Historical Company on the Cloud Journey
Onboard a Historical Company on the Cloud JourneyMarius Zaharia
 
Multi-Tenant Identity and Azure Resource Governance - ReBUILD 2019
Multi-Tenant Identity and Azure Resource Governance - ReBUILD 2019Multi-Tenant Identity and Azure Resource Governance - ReBUILD 2019
Multi-Tenant Identity and Azure Resource Governance - ReBUILD 2019Marius Zaharia
 
Azure Firewall (Meetup Société Générale - dec 2018)
Azure Firewall (Meetup Société Générale - dec 2018)Azure Firewall (Meetup Société Générale - dec 2018)
Azure Firewall (Meetup Société Générale - dec 2018)Marius Zaharia
 
Onboarding a Historical Company on the Cloud Journey (IT Camp 2018)
Onboarding a Historical Company on the Cloud Journey (IT Camp 2018)Onboarding a Historical Company on the Cloud Journey (IT Camp 2018)
Onboarding a Historical Company on the Cloud Journey (IT Camp 2018)Marius Zaharia
 
Modern Architecture in the Cloud of 2018 (IT Camp 2018)
Modern Architecture in the Cloud of 2018 (IT Camp 2018)Modern Architecture in the Cloud of 2018 (IT Camp 2018)
Modern Architecture in the Cloud of 2018 (IT Camp 2018)Marius Zaharia
 
Modern Architecture in the Cloud of 2018
Modern Architecture in the Cloud of 2018Modern Architecture in the Cloud of 2018
Modern Architecture in the Cloud of 2018Marius Zaharia
 
Architecture Moderne dans le Cloud en 2018
Architecture Moderne dans le Cloud en 2018Architecture Moderne dans le Cloud en 2018
Architecture Moderne dans le Cloud en 2018Marius Zaharia
 
Onboarding a Historical Company on the Cloud Journey
Onboarding a Historical Company on the Cloud JourneyOnboarding a Historical Company on the Cloud Journey
Onboarding a Historical Company on the Cloud JourneyMarius Zaharia
 
APIs dans Azure : serverless ou pas serverless?
APIs dans Azure : serverless ou pas serverless?APIs dans Azure : serverless ou pas serverless?
APIs dans Azure : serverless ou pas serverless?Marius Zaharia
 
One Azure Monitor to Rule Them All? (IT Camp 2017, Cluj, RO)
One Azure Monitor to Rule Them All? (IT Camp 2017, Cluj, RO)One Azure Monitor to Rule Them All? (IT Camp 2017, Cluj, RO)
One Azure Monitor to Rule Them All? (IT Camp 2017, Cluj, RO)Marius Zaharia
 
La santé de votre environnement Azure, entre Monitor, AppInsights et Log Anal...
La santé de votre environnement Azure, entre Monitor, AppInsights et Log Anal...La santé de votre environnement Azure, entre Monitor, AppInsights et Log Anal...
La santé de votre environnement Azure, entre Monitor, AppInsights et Log Anal...Marius Zaharia
 
Azure Integration Services : les concepts de BizTalk dans le cloud (ARC303)
Azure Integration Services : les concepts de BizTalk dans le cloud (ARC303)Azure Integration Services : les concepts de BizTalk dans le cloud (ARC303)
Azure Integration Services : les concepts de BizTalk dans le cloud (ARC303)Marius Zaharia
 

More from Marius Zaharia (13)

Multi-Tenant Identity and Azure Resource Governance - Identity Days 2019
Multi-Tenant Identity and Azure Resource Governance - Identity Days 2019Multi-Tenant Identity and Azure Resource Governance - Identity Days 2019
Multi-Tenant Identity and Azure Resource Governance - Identity Days 2019
 
Onboard a Historical Company on the Cloud Journey
Onboard a Historical Company on the Cloud JourneyOnboard a Historical Company on the Cloud Journey
Onboard a Historical Company on the Cloud Journey
 
Multi-Tenant Identity and Azure Resource Governance - ReBUILD 2019
Multi-Tenant Identity and Azure Resource Governance - ReBUILD 2019Multi-Tenant Identity and Azure Resource Governance - ReBUILD 2019
Multi-Tenant Identity and Azure Resource Governance - ReBUILD 2019
 
Azure Firewall (Meetup Société Générale - dec 2018)
Azure Firewall (Meetup Société Générale - dec 2018)Azure Firewall (Meetup Société Générale - dec 2018)
Azure Firewall (Meetup Société Générale - dec 2018)
 
Onboarding a Historical Company on the Cloud Journey (IT Camp 2018)
Onboarding a Historical Company on the Cloud Journey (IT Camp 2018)Onboarding a Historical Company on the Cloud Journey (IT Camp 2018)
Onboarding a Historical Company on the Cloud Journey (IT Camp 2018)
 
Modern Architecture in the Cloud of 2018 (IT Camp 2018)
Modern Architecture in the Cloud of 2018 (IT Camp 2018)Modern Architecture in the Cloud of 2018 (IT Camp 2018)
Modern Architecture in the Cloud of 2018 (IT Camp 2018)
 
Modern Architecture in the Cloud of 2018
Modern Architecture in the Cloud of 2018Modern Architecture in the Cloud of 2018
Modern Architecture in the Cloud of 2018
 
Architecture Moderne dans le Cloud en 2018
Architecture Moderne dans le Cloud en 2018Architecture Moderne dans le Cloud en 2018
Architecture Moderne dans le Cloud en 2018
 
Onboarding a Historical Company on the Cloud Journey
Onboarding a Historical Company on the Cloud JourneyOnboarding a Historical Company on the Cloud Journey
Onboarding a Historical Company on the Cloud Journey
 
APIs dans Azure : serverless ou pas serverless?
APIs dans Azure : serverless ou pas serverless?APIs dans Azure : serverless ou pas serverless?
APIs dans Azure : serverless ou pas serverless?
 
One Azure Monitor to Rule Them All? (IT Camp 2017, Cluj, RO)
One Azure Monitor to Rule Them All? (IT Camp 2017, Cluj, RO)One Azure Monitor to Rule Them All? (IT Camp 2017, Cluj, RO)
One Azure Monitor to Rule Them All? (IT Camp 2017, Cluj, RO)
 
La santé de votre environnement Azure, entre Monitor, AppInsights et Log Anal...
La santé de votre environnement Azure, entre Monitor, AppInsights et Log Anal...La santé de votre environnement Azure, entre Monitor, AppInsights et Log Anal...
La santé de votre environnement Azure, entre Monitor, AppInsights et Log Anal...
 
Azure Integration Services : les concepts de BizTalk dans le cloud (ARC303)
Azure Integration Services : les concepts de BizTalk dans le cloud (ARC303)Azure Integration Services : les concepts de BizTalk dans le cloud (ARC303)
Azure Integration Services : les concepts de BizTalk dans le cloud (ARC303)
 

Recently uploaded

MuleSoft Online Meetup Group - B2B Crash Course: Release SparkNotes
MuleSoft Online Meetup Group - B2B Crash Course: Release SparkNotesMuleSoft Online Meetup Group - B2B Crash Course: Release SparkNotes
MuleSoft Online Meetup Group - B2B Crash Course: Release SparkNotesManik S Magar
 
Scale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterScale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterMydbops
 
Microsoft 365 Copilot: How to boost your productivity with AI – Part one: Ado...
Microsoft 365 Copilot: How to boost your productivity with AI – Part one: Ado...Microsoft 365 Copilot: How to boost your productivity with AI – Part one: Ado...
Microsoft 365 Copilot: How to boost your productivity with AI – Part one: Ado...Nikki Chapple
 
Generative AI - Gitex v1Generative AI - Gitex v1.pptx
Generative AI - Gitex v1Generative AI - Gitex v1.pptxGenerative AI - Gitex v1Generative AI - Gitex v1.pptx
Generative AI - Gitex v1Generative AI - Gitex v1.pptxfnnc6jmgwh
 
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxPasskey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxLoriGlavin3
 
Potential of AI (Generative AI) in Business: Learnings and Insights
Potential of AI (Generative AI) in Business: Learnings and InsightsPotential of AI (Generative AI) in Business: Learnings and Insights
Potential of AI (Generative AI) in Business: Learnings and InsightsRavi Sanghani
 
TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024Lonnie McRorey
 
Connecting the Dots for Information Discovery.pdf
Connecting the Dots for Information Discovery.pdfConnecting the Dots for Information Discovery.pdf
Connecting the Dots for Information Discovery.pdfNeo4j
 
Time Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directionsTime Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directionsNathaniel Shimoni
 
Design pattern talk by Kaya Weers - 2024 (v2)
Design pattern talk by Kaya Weers - 2024 (v2)Design pattern talk by Kaya Weers - 2024 (v2)
Design pattern talk by Kaya Weers - 2024 (v2)Kaya Weers
 
Long journey of Ruby standard library at RubyConf AU 2024
Long journey of Ruby standard library at RubyConf AU 2024Long journey of Ruby standard library at RubyConf AU 2024
Long journey of Ruby standard library at RubyConf AU 2024Hiroshi SHIBATA
 
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptxA Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptxLoriGlavin3
 
So einfach geht modernes Roaming fuer Notes und Nomad.pdf
So einfach geht modernes Roaming fuer Notes und Nomad.pdfSo einfach geht modernes Roaming fuer Notes und Nomad.pdf
So einfach geht modernes Roaming fuer Notes und Nomad.pdfpanagenda
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxLoriGlavin3
 
Data governance with Unity Catalog Presentation
Data governance with Unity Catalog PresentationData governance with Unity Catalog Presentation
Data governance with Unity Catalog PresentationKnoldus Inc.
 
React Native vs Ionic - The Best Mobile App Framework
React Native vs Ionic - The Best Mobile App FrameworkReact Native vs Ionic - The Best Mobile App Framework
React Native vs Ionic - The Best Mobile App FrameworkPixlogix Infotech
 
Testing tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examplesTesting tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examplesKari Kakkonen
 
Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...
Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...
Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...itnewsafrica
 
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024BookNet Canada
 
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxThe Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxLoriGlavin3
 

Recently uploaded (20)

MuleSoft Online Meetup Group - B2B Crash Course: Release SparkNotes
MuleSoft Online Meetup Group - B2B Crash Course: Release SparkNotesMuleSoft Online Meetup Group - B2B Crash Course: Release SparkNotes
MuleSoft Online Meetup Group - B2B Crash Course: Release SparkNotes
 
Scale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterScale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL Router
 
Microsoft 365 Copilot: How to boost your productivity with AI – Part one: Ado...
Microsoft 365 Copilot: How to boost your productivity with AI – Part one: Ado...Microsoft 365 Copilot: How to boost your productivity with AI – Part one: Ado...
Microsoft 365 Copilot: How to boost your productivity with AI – Part one: Ado...
 
Generative AI - Gitex v1Generative AI - Gitex v1.pptx
Generative AI - Gitex v1Generative AI - Gitex v1.pptxGenerative AI - Gitex v1Generative AI - Gitex v1.pptx
Generative AI - Gitex v1Generative AI - Gitex v1.pptx
 
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptxPasskey Providers and Enabling Portability: FIDO Paris Seminar.pptx
Passkey Providers and Enabling Portability: FIDO Paris Seminar.pptx
 
Potential of AI (Generative AI) in Business: Learnings and Insights
Potential of AI (Generative AI) in Business: Learnings and InsightsPotential of AI (Generative AI) in Business: Learnings and Insights
Potential of AI (Generative AI) in Business: Learnings and Insights
 
TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024TeamStation AI System Report LATAM IT Salaries 2024
TeamStation AI System Report LATAM IT Salaries 2024
 
Connecting the Dots for Information Discovery.pdf
Connecting the Dots for Information Discovery.pdfConnecting the Dots for Information Discovery.pdf
Connecting the Dots for Information Discovery.pdf
 
Time Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directionsTime Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directions
 
Design pattern talk by Kaya Weers - 2024 (v2)
Design pattern talk by Kaya Weers - 2024 (v2)Design pattern talk by Kaya Weers - 2024 (v2)
Design pattern talk by Kaya Weers - 2024 (v2)
 
Long journey of Ruby standard library at RubyConf AU 2024
Long journey of Ruby standard library at RubyConf AU 2024Long journey of Ruby standard library at RubyConf AU 2024
Long journey of Ruby standard library at RubyConf AU 2024
 
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptxA Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
 
So einfach geht modernes Roaming fuer Notes und Nomad.pdf
So einfach geht modernes Roaming fuer Notes und Nomad.pdfSo einfach geht modernes Roaming fuer Notes und Nomad.pdf
So einfach geht modernes Roaming fuer Notes und Nomad.pdf
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
 
Data governance with Unity Catalog Presentation
Data governance with Unity Catalog PresentationData governance with Unity Catalog Presentation
Data governance with Unity Catalog Presentation
 
React Native vs Ionic - The Best Mobile App Framework
React Native vs Ionic - The Best Mobile App FrameworkReact Native vs Ionic - The Best Mobile App Framework
React Native vs Ionic - The Best Mobile App Framework
 
Testing tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examplesTesting tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examples
 
Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...
Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...
Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...
 
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
 
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxThe Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
 

Azure Networking: Innovative Features and Multi-VNet Topologies

  • 1. Azure Multi-VNET Architectures and Topologies Marius Zaharia 03/12/2016
  • 2. 1 Business scenario 4 Scripting and automation 5 Technical solution Demo 2 Networking services Architecture and topologies3 6
  • 3. Cellenza : des experts reconnus dans le Cloud, DevOps, Intégration, … 10 Azure C# ALM SQL Server Windows Client 1 4 Des publications : • Livres blancs (Cell’Insights) • http://www.cellenza.com/cellinsights • Articles dans Programmez! • Blog Cellenza • http://blog.cellenza.com • Organisation de TechEvent • Speakers lors de conférences Microsoft • TechDays, Azure Camp, …
  • 4. Marius Zaharia Senior Cloud Architect Efficient & Visionary “Manage Teams Architectures Understand ComplexInternational + Mon expérience + Mon expertise IDÉATION CONCEPTION WIREFRAMES Marius apporte aux clients son expertise et expérience dans l’analyse, conception et développement d’applications complexes d’entreprise et d’intégration applicative et d’infrastructure basées principalement sur des technologies Microsoft. Son profile lui permet d’aborder les architectures Cloud Computing, SOA, hybridation et urbanisation des SI dans des missions polyvalentes solution/développement et IT pro. Marius travaille également dans les activités de Business Development et avant-vente de Cellenza, étant P-SELLER Azure (en partenariat avec Microsoft). Dans le monde communautaire, Marius est impliqué dans l’organisation d’AZUG FR – Azure User Group France et des conférences comme Global Azure Bootcamp, MS Cloud Summit, des meetups réguliers avec la communauté Azure etc. DevOps P-SELLER Azure
  • 5. Introduction  “Azure VNET to VNET VPN, across regions and data centers: not so complicated”  Connection between multiple Azure Virtual Networks, in particular a VNET- to-VNET-to-VNET relationship  All based on PowerShell scripting and classic deployment in Azure  Azure moving to ARM deployment model and the new (modern) portal  Migration of existing features to ARM  Migration to the new portal  New innovative features
  • 7. Business Case  Multiple environments communicating with each other  In the same Azure region  Across 2 regions  With the on-premises environments  Implement network connectivity between the environments  CONCRETE EXEMPLE: SQL Server AlwaysOn distributed cluster  1 master replica in Dublin  1 secondary replica (synchronous) in Dublin  1 secondary replica (asynchronous) in Amsterdam
  • 10. Azure Networks  Virtual Network: logical isolation of the Azure cloud dedicated to your subscription  Subnet: range of IP addresses in the VNet, divided for organization and security  Public IP: allow Azure resources to communicate with Internet and Azure public-facing services  Network Interface Card: interconnection between a Virtual Machine (VM) and the underlying software network  VPN Gateway: Azure service used to send network traffic between Azure virtual networks and other locations  ExpressRoute: lets you extend your on-premises networks into the Microsoft cloud over a dedicated private connection facilitated by a connectivity provider  Network Security Group: allow you to control inbound and outbound access to network interfaces, VMs, and subnets, based on a list of access control list (ACL)  User Defined Routes: specify the next hop for packets flowing to a specific subnet  IP Forwarding: Azure setting for a VM allowing it to receive traffic addressed to other destinations  Virtual Appliance: VM in your VNet that runs a software based appliance function, such as firewall, WAN optimization, or intrusion detection
  • 11. Azure Networking: VNET Peering  VNet peering: a mechanism that connects two VNets in the same region through the Azure backbone network  Once peered, the two virtual networks appear as one for all connectivity purposes  Low-latency, high-bandwidth connection  Can connect ARM-to-ARM Vnet, or ARM-to-Classic  Requirements and key aspects  in the same Azure region.  non-overlapping IP address spaces.  no derived transitive relationship  Peering two different subscriptions possible, but under conditions*  Peering between ARM and Classic, under conditions*  No Classic to Classic  Networking bandwidth cap based on VM size still applies
  • 12. Azure Networking: Load Balancer Azure Load Balancer  Layer 4 (TCP, UDP)  Services  Load balancing  Internet-facing  Internal  Traffic forwarding (NAT)  Features  Load balancer: hash-based distrib.  Port forwarding  Automatic configuration  Service health monitoring  Source NAT (SNAT)  multiple load-balanced IP addresses for VMs  Probes  TCP  HTTP/S  Guest agent (for PaaS only)
  • 13. Azure networking: Traffic Manager  Controls the distribution of user traffic for service endpoints in different datacenters  uses DNS to direct client requests  Features  Traffic-routing methods  Priority  Weighted  Performance  Nested Traffic Manager profiles  Monitoring of endpoint health  Automatic failover
  • 14. Azure Networking: Application Gateway  Application Gateway  Application Delivery Controller (ADC) as a service  layer 7 load balancing  Features  Web Application Firewall (Preview)  HTTP load balancing  Cookie-based session affinity  SSL offload; end to end SSL  URL-based content routing  Multi-site routing (up to 20)  Websocket support  Health monitoring  Advanced diagnostics
  • 15. Load Balancer differences  Azure Load Balancer works at the transport layer (Layer 4 in the OSI network reference stack). It provides network-level distribution of traffic across instances of an application running in the same Azure data center.  Application Gateway works at the application layer (Layer 7 in the OSI network reference stack). It acts as a reverse-proxy service, terminating the client connection and forwarding requests to back- end endpoints.  Traffic Manager works at the DNS level. It uses DNS responses to direct end-user traffic to globally distributed endpoints. Clients then connect to those endpoints directly.
  • 17. Azure Networking - Cross-Premises Connections Cross-premises connection options :  Site-to-Site – VPN connection over IPsec (IKE v1 and IKE v2). This type of connection requires a VPN physical or virtual (RRAS) device.  Point-to-Site – VPN connection over SSTP (Secure Socket Tunneling Protocol). This connection does not require a VPN device.  VNet-to-VNet – This type of connection is the same as a Site-to-Site configuration. VNet to VNet is a VPN connection over IPsec (IKE v1 and IKE v2). It does not require a VPN device.  Multi-Site – This is a variation of a Site-to-Site configuration that allows you to connect multiple on-premises sites to a virtual network.  ExpressRoute – ExpressRoute is a direct connection to Azure from your WAN, not over the public Internet. See the ExpressRoute Technical Overview and the ExpressRoute FAQ for more information.
  • 19. On-premises NetworkVNET 1 Simple Hybrid Topology (point-to-point) VPN IPSec G W G W VNET – S2S IPSec VPN to On-premises Site-to-Site – VPN connection over IPsec (IKE v1 and IKE v2). This type of connection requires a VPN physical or virtual (RRAS) device.
  • 20. On-premises NetworkVNET 1 Simple Hybrid Topology (point-to-point) VPN IPSec G W G WExpressRoute VNET – S2S IPSec VPN with on-premises VNET – ExpressRoute With on-premises Direct connection to Azure from your WAN, not over the public Internet.
  • 21. VNET 2VNET 1 Simple Cloud-Only Topology VPN IPSec G W G W VNet-to-VNet – This type of connection is the same as a Site-to- Site configuration. It’s a VPN connection over IPsec (IKE v1 and IKE v2). It does not require a VPN device. (executed over MS Backbone transport layer)
  • 22. VNET 2VNET 1 Simple Cloud-Only Topology G W G WExpressRoute VNet-to-VNet – This type of connection is the same as a Site-to- Site configuration. It’s a VPN connection over IPsec (IKE v1 and IKE v2). It does not require a VPN device. (executed over MS Backbone transport layer)
  • 23. VNET 2VNET 1 Simple Cloud-Only Topology Peering VNET – peering to VNET Transport Backbone intra- datacenter
  • 25. VNET 2 Complex Topologies VNET 4 VNET 5 VNET 3 VNET 1 « HUB & SPOKE » • Configure simple bidirectional communications between the master VNET end the satellite VNETs. • Any of the direct connectivity options described before (IPSec VPN, ExpressRoute if the case, or Peering) can be used here.
  • 26. VNET 2 Complex Topologies VNET 3 VNET 1 « DAISY CHAIN » • Transitivity: the VNET 1 will communicate with the VNET 3 via specific routing configuration set up in the VNET 2 • advantage : getting profit of a connection already established for the usage of another VNET • inconvenient: if the VNET 2 (or its gateway) loses its connectivity, it will also affect the connectivity between the lateral VNETs.
  • 27. VNET 1 Complex Topologies VNET 2 VNET 3 VNET 4 « (FULL) MESH » • Let you master the direct connectivity between various VNETs, without having dependencies on intermediate VNETs or their gateways • much more work to getting it done • it’s up to you to decide which VNET communicate with which one Do it in Azure? • VPN gateways & bidirectional connections • VNET peerings
  • 29. Technical Solution The solution is composed of 3 main segments: 1. VNET Peering between VNET2 and VNET1 (both VNETs being in the same region) 2. Site-to-Site VPN connection between VNET1 (Dublin) and VNET3 (Amsterdam), with VPN Gateways deployed in both VNETs 3. Transitivity for the VNET2 to VNET3 through the VPN Gateway 1. This connection transitivity will be configured in the VNET Peering settings directly
  • 30. Technical Solution - Diagram VNET 3VNET 1 VPN IPSec G W G W VNET 2 DC DUBLIN DC AMSTERDAM Master (Primary) Replica Secondary Replica 1 Secondary Replica 2VNET 4
  • 33. Thank you ! Go to the blogs : - blog.lecampusazure.net (EN) - blog.cellenza.com (FR) The sources are on github.com/lecampusazure

Editor's Notes

  1. SCHEMA VNET 1, 2 Dublin; 3 Amsterdam VNET 2 – peering – VNET1 – VPN GW – VNET3
  2. Simulation création portal Show-up RG déjà provisionné VMs en remote : test de connectivité