SlideShare una empresa de Scribd logo

Azure Networking: Innovative Features and Multi-VNet Topologies

Marius Zaharia
Marius Zaharia

Are you looking to deploy a more complex structure of resources in Azure, all secured and segregated by precise boundaries while closely communicating with each other? Following the arrival of the advanced IaaS networking features in Azure (network security groups, routing, multi-NIC, …) and their maturation in the last months, here is the moment for you to find a modern architectural vision of networking in Azure, with focus on multi-VNET / VPN topologies, and based on ARM deployment model.

Tecnología
1 de 33
Azure Multi-VNET Architectures and Topologies Marius Zaharia 03/12/2016
1 Business scenario 4 Scripting and automation 5 Technical solution Demo 2 Networking services Architecture and topologies3 6
Cellenza : des experts reconnus dans le Cloud, DevOps, Intégration, … 10 Azure C# ALM SQL Server Windows Client 1 4 Des publications : • Livres blancs (Cell’Insights) • http://www.cellenza.com/cellinsights • Articles dans Programmez! • Blog Cellenza • http://blog.cellenza.com • Organisation de TechEvent • Speakers lors de conférences Microsoft • TechDays, Azure Camp, …
Marius Zaharia Senior Cloud Architect Efficient & Visionary “Manage Teams Architectures Understand ComplexInternational + Mon expérience + Mon expertise IDÉATION CONCEPTION WIREFRAMES Marius apporte aux clients son expertise et expérience dans l’analyse, conception et développement d’applications complexes d’entreprise et d’intégration applicative et d’infrastructure basées principalement sur des technologies Microsoft. Son profile lui permet d’aborder les architectures Cloud Computing, SOA, hybridation et urbanisation des SI dans des missions polyvalentes solution/développement et IT pro. Marius travaille également dans les activités de Business Development et avant-vente de Cellenza, étant P-SELLER Azure (en partenariat avec Microsoft). Dans le monde communautaire, Marius est impliqué dans l’organisation d’AZUG FR – Azure User Group France et des conférences comme Global Azure Bootcamp, MS Cloud Summit, des meetups réguliers avec la communauté Azure etc. DevOps P-SELLER Azure
Introduction  “Azure VNET to VNET VPN, across regions and data centers: not so complicated”  Connection between multiple Azure Virtual Networks, in particular a VNET- to-VNET-to-VNET relationship  All based on PowerShell scripting and classic deployment in Azure  Azure moving to ARM deployment model and the new (modern) portal  Migration of existing features to ARM  Migration to the new portal  New innovative features
BUSINESS CASE
Business Case  Multiple environments communicating with each other  In the same Azure region  Across 2 regions  With the on-premises environments  Implement network connectivity between the environments  CONCRETE EXEMPLE: SQL Server AlwaysOn distributed cluster  1 master replica in Dublin  1 secondary replica (synchronous) in Dublin  1 secondary replica (asynchronous) in Amsterdam
NETWORKING SERVICES
Azure Networking
Azure Networks  Virtual Network: logical isolation of the Azure cloud dedicated to your subscription  Subnet: range of IP addresses in the VNet, divided for organization and security  Public IP: allow Azure resources to communicate with Internet and Azure public-facing services  Network Interface Card: interconnection between a Virtual Machine (VM) and the underlying software network  VPN Gateway: Azure service used to send network traffic between Azure virtual networks and other locations  ExpressRoute: lets you extend your on-premises networks into the Microsoft cloud over a dedicated private connection facilitated by a connectivity provider  Network Security Group: allow you to control inbound and outbound access to network interfaces, VMs, and subnets, based on a list of access control list (ACL)  User Defined Routes: specify the next hop for packets flowing to a specific subnet  IP Forwarding: Azure setting for a VM allowing it to receive traffic addressed to other destinations  Virtual Appliance: VM in your VNet that runs a software based appliance function, such as firewall, WAN optimization, or intrusion detection
Azure Networking: VNET Peering  VNet peering: a mechanism that connects two VNets in the same region through the Azure backbone network  Once peered, the two virtual networks appear as one for all connectivity purposes  Low-latency, high-bandwidth connection  Can connect ARM-to-ARM Vnet, or ARM-to-Classic  Requirements and key aspects  in the same Azure region.  non-overlapping IP address spaces.  no derived transitive relationship  Peering two different subscriptions possible, but under conditions*  Peering between ARM and Classic, under conditions*  No Classic to Classic  Networking bandwidth cap based on VM size still applies
Azure Networking: Load Balancer Azure Load Balancer  Layer 4 (TCP, UDP)  Services  Load balancing  Internet-facing  Internal  Traffic forwarding (NAT)  Features  Load balancer: hash-based distrib.  Port forwarding  Automatic configuration  Service health monitoring  Source NAT (SNAT)  multiple load-balanced IP addresses for VMs  Probes  TCP  HTTP/S  Guest agent (for PaaS only)
Azure networking: Traffic Manager  Controls the distribution of user traffic for service endpoints in different datacenters  uses DNS to direct client requests  Features  Traffic-routing methods  Priority  Weighted  Performance  Nested Traffic Manager profiles  Monitoring of endpoint health  Automatic failover
Azure Networking: Application Gateway  Application Gateway  Application Delivery Controller (ADC) as a service  layer 7 load balancing  Features  Web Application Firewall (Preview)  HTTP load balancing  Cookie-based session affinity  SSL offload; end to end SSL  URL-based content routing  Multi-site routing (up to 20)  Websocket support  Health monitoring  Advanced diagnostics
Load Balancer differences  Azure Load Balancer works at the transport layer (Layer 4 in the OSI network reference stack). It provides network-level distribution of traffic across instances of an application running in the same Azure data center.  Application Gateway works at the application layer (Layer 7 in the OSI network reference stack). It acts as a reverse-proxy service, terminating the client connection and forwarding requests to back- end endpoints.  Traffic Manager works at the DNS level. It uses DNS responses to direct end-user traffic to globally distributed endpoints. Clients then connect to those endpoints directly.
NETWORKING TOPOLOGIES
Azure Networking - Cross-Premises Connections Cross-premises connection options :  Site-to-Site – VPN connection over IPsec (IKE v1 and IKE v2). This type of connection requires a VPN physical or virtual (RRAS) device.  Point-to-Site – VPN connection over SSTP (Secure Socket Tunneling Protocol). This connection does not require a VPN device.  VNet-to-VNet – This type of connection is the same as a Site-to-Site configuration. VNet to VNet is a VPN connection over IPsec (IKE v1 and IKE v2). It does not require a VPN device.  Multi-Site – This is a variation of a Site-to-Site configuration that allows you to connect multiple on-premises sites to a virtual network.  ExpressRoute – ExpressRoute is a direct connection to Azure from your WAN, not over the public Internet. See the ExpressRoute Technical Overview and the ExpressRoute FAQ for more information.
SIMPLE NETWORKING TOPOLOGIES
On-premises NetworkVNET 1 Simple Hybrid Topology (point-to-point) VPN IPSec G W G W VNET – S2S IPSec VPN to On-premises Site-to-Site – VPN connection over IPsec (IKE v1 and IKE v2). This type of connection requires a VPN physical or virtual (RRAS) device.
On-premises NetworkVNET 1 Simple Hybrid Topology (point-to-point) VPN IPSec G W G WExpressRoute VNET – S2S IPSec VPN with on-premises VNET – ExpressRoute With on-premises Direct connection to Azure from your WAN, not over the public Internet.
VNET 2VNET 1 Simple Cloud-Only Topology VPN IPSec G W G W VNet-to-VNet – This type of connection is the same as a Site-to- Site configuration. It’s a VPN connection over IPsec (IKE v1 and IKE v2). It does not require a VPN device. (executed over MS Backbone transport layer)
VNET 2VNET 1 Simple Cloud-Only Topology G W G WExpressRoute VNet-to-VNet – This type of connection is the same as a Site-to- Site configuration. It’s a VPN connection over IPsec (IKE v1 and IKE v2). It does not require a VPN device. (executed over MS Backbone transport layer)
VNET 2VNET 1 Simple Cloud-Only Topology Peering VNET – peering to VNET Transport Backbone intra- datacenter
COMPLEX NETWORKING TOPOLOGIES
VNET 2 Complex Topologies VNET 4 VNET 5 VNET 3 VNET 1 « HUB & SPOKE » • Configure simple bidirectional communications between the master VNET end the satellite VNETs. • Any of the direct connectivity options described before (IPSec VPN, ExpressRoute if the case, or Peering) can be used here.
VNET 2 Complex Topologies VNET 3 VNET 1 « DAISY CHAIN » • Transitivity: the VNET 1 will communicate with the VNET 3 via specific routing configuration set up in the VNET 2 • advantage : getting profit of a connection already established for the usage of another VNET • inconvenient: if the VNET 2 (or its gateway) loses its connectivity, it will also affect the connectivity between the lateral VNETs.
VNET 1 Complex Topologies VNET 2 VNET 3 VNET 4 « (FULL) MESH » • Let you master the direct connectivity between various VNETs, without having dependencies on intermediate VNETs or their gateways • much more work to getting it done • it’s up to you to decide which VNET communicate with which one Do it in Azure? • VPN gateways & bidirectional connections • VNET peerings
TECHNICAL SOLUTION for our BUSINESS CASE
Technical Solution The solution is composed of 3 main segments: 1. VNET Peering between VNET2 and VNET1 (both VNETs being in the same region) 2. Site-to-Site VPN connection between VNET1 (Dublin) and VNET3 (Amsterdam), with VPN Gateways deployed in both VNETs 3. Transitivity for the VNET2 to VNET3 through the VPN Gateway 1. This connection transitivity will be configured in the VNET Peering settings directly
Technical Solution - Diagram VNET 3VNET 1 VPN IPSec G W G W VNET 2 DC DUBLIN DC AMSTERDAM Master (Primary) Replica Secondary Replica 1 Secondary Replica 2VNET 4
DEMO DEMO
Scripting - ARM
Thank you ! Go to the blogs : - blog.lecampusazure.net (EN) - blog.cellenza.com (FR) The sources are on github.com/lecampusazure

Recomendados

Understanding Azure Networking Services
Understanding Azure Networking ServicesUnderstanding Azure Networking Services
Understanding Azure Networking ServicesInCycleSoftware
 
Microsoft Azure Networking Basics
Microsoft Azure Networking BasicsMicrosoft Azure Networking Basics
Microsoft Azure Networking BasicsSai Kishore Naidu
 
Let's Talk About: Azure Networking
Let's Talk About: Azure NetworkingLet's Talk About: Azure Networking
Let's Talk About: Azure NetworkingPedro Sousa
 
Azure virtual network
Azure virtual networkAzure virtual network
Azure virtual networkLalit Rawat
 
Azure Networking (1).pptx
Azure Networking (1).pptxAzure Networking (1).pptx
Azure Networking (1).pptxRazith2
 
Azure DevOps Best Practices Webinar
Azure DevOps Best Practices WebinarAzure DevOps Best Practices Webinar
Azure DevOps Best Practices WebinarCambay Digital
 
Azure 101
Azure 101Azure 101
Azure 101Korry Lavoie
 
Red Hat OpenShift Container Platform Overview
Red Hat OpenShift Container Platform OverviewRed Hat OpenShift Container Platform Overview
Red Hat OpenShift Container Platform OverviewJames Falkner
 

Recomendados

Understanding Azure Networking Services
Understanding Azure Networking ServicesUnderstanding Azure Networking Services
Understanding Azure Networking ServicesInCycleSoftware
 
Microsoft Azure Networking Basics
Microsoft Azure Networking BasicsMicrosoft Azure Networking Basics
Microsoft Azure Networking BasicsSai Kishore Naidu
 
Let's Talk About: Azure Networking
Let's Talk About: Azure NetworkingLet's Talk About: Azure Networking
Let's Talk About: Azure NetworkingPedro Sousa
 
Azure virtual network
Azure virtual networkAzure virtual network
Azure virtual networkLalit Rawat
 
Azure Networking (1).pptx
Azure Networking (1).pptxAzure Networking (1).pptx
Azure Networking (1).pptxRazith2
 
Azure DevOps Best Practices Webinar
Azure DevOps Best Practices WebinarAzure DevOps Best Practices Webinar
Azure DevOps Best Practices WebinarCambay Digital
 
Azure 101
Azure 101Azure 101
Azure 101Korry Lavoie
 
Red Hat OpenShift Container Platform Overview
Red Hat OpenShift Container Platform OverviewRed Hat OpenShift Container Platform Overview
Red Hat OpenShift Container Platform OverviewJames Falkner
 
Azure vnet
Azure vnetAzure vnet
Azure vnetzekeLabs Technologies
 
Continues Integration and Continuous Delivery with Azure DevOps - Deploy Anyt...
Continues Integration and Continuous Delivery with Azure DevOps - Deploy Anyt...Continues Integration and Continuous Delivery with Azure DevOps - Deploy Anyt...
Continues Integration and Continuous Delivery with Azure DevOps - Deploy Anyt...Janusz Nowak
 
Part 01: Azure Virtual Networks – An Overview
Part 01: Azure Virtual Networks – An OverviewPart 01: Azure Virtual Networks – An Overview
Part 01: Azure Virtual Networks – An OverviewNeeraj Kumar
 
Introduction to Azure IaaS
Introduction to Azure IaaSIntroduction to Azure IaaS
Introduction to Azure IaaSRobert Crane
 
Azure Security Fundamentals
Azure Security FundamentalsAzure Security Fundamentals
Azure Security FundamentalsLorenzo Barbieri
 
Microsoft Azure Technical Overview
Microsoft Azure Technical OverviewMicrosoft Azure Technical Overview
Microsoft Azure Technical Overviewgjuljo
 
Azure Network Security Groups (NSG)
Azure Network Security Groups (NSG)Azure Network Security Groups (NSG)
Azure Network Security Groups (NSG)Shawn Ismail
 
Intro to Azure DevOps
Intro to Azure DevOpsIntro to Azure DevOps
Intro to Azure DevOpsLorenzo Barbieri
 
A Deepdive into Azure Networking
A Deepdive into Azure NetworkingA Deepdive into Azure Networking
A Deepdive into Azure NetworkingKarim Vaes
 
CCI2018 - Azure Network - Security Best Practices
CCI2018 - Azure Network - Security Best PracticesCCI2018 - Azure Network - Security Best Practices
CCI2018 - Azure Network - Security Best Practiceswalk2talk srl
 
Microsoft Azure Security Overview
Microsoft Azure Security OverviewMicrosoft Azure Security Overview
Microsoft Azure Security OverviewAlert Logic
 
Networking deep dive
Networking deep diveNetworking deep dive
Networking deep diveJeroen Niesen
 
Kubernetes Architecture
Kubernetes Architecture Kubernetes Architecture
Kubernetes ArchitectureKnoldus Inc.
 
Azure DevOps
Azure DevOpsAzure DevOps
Azure DevOpsSurasuk Oakkharaamonphong
 
Introduction to Microsoft Azure Cloud
Introduction to Microsoft Azure CloudIntroduction to Microsoft Azure Cloud
Introduction to Microsoft Azure CloudDinesh Kumar Wickramasinghe
 
Azure fundamentals
Azure fundamentalsAzure fundamentals
Azure fundamentalsRaju Kumar
 
Microsoft Azure - Introduction to microsoft's public cloud
Microsoft Azure - Introduction to microsoft's public cloudMicrosoft Azure - Introduction to microsoft's public cloud
Microsoft Azure - Introduction to microsoft's public cloudAtanas Gergiminov
 
Microsoft Azure Security Overview - Microsoft - CSS Dallas Azure
Microsoft Azure Security Overview - Microsoft - CSS Dallas AzureMicrosoft Azure Security Overview - Microsoft - CSS Dallas Azure
Microsoft Azure Security Overview - Microsoft - CSS Dallas AzureAlert Logic
 
Tour of Azure DevOps
Tour of Azure DevOpsTour of Azure DevOps
Tour of Azure DevOpsCallon Campbell
 
Azure vm introduction
Azure vm introductionAzure vm introduction
Azure vm introductionLalit Rawat
 
Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...
Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...
Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...Microsoft
 
Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...
Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...
Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...Shawn Ismail
 

Más contenido relacionado

La actualidad más candente

Continues Integration and Continuous Delivery with Azure DevOps - Deploy Anyt...
Continues Integration and Continuous Delivery with Azure DevOps - Deploy Anyt...Continues Integration and Continuous Delivery with Azure DevOps - Deploy Anyt...
Continues Integration and Continuous Delivery with Azure DevOps - Deploy Anyt...Janusz Nowak
 
Part 01: Azure Virtual Networks – An Overview
Part 01: Azure Virtual Networks – An OverviewPart 01: Azure Virtual Networks – An Overview
Part 01: Azure Virtual Networks – An OverviewNeeraj Kumar
 
Introduction to Azure IaaS
Introduction to Azure IaaSIntroduction to Azure IaaS
Introduction to Azure IaaSRobert Crane
 
Azure Security Fundamentals
Azure Security FundamentalsAzure Security Fundamentals
Azure Security FundamentalsLorenzo Barbieri
 
Microsoft Azure Technical Overview
Microsoft Azure Technical OverviewMicrosoft Azure Technical Overview
Microsoft Azure Technical Overviewgjuljo
 
Azure Network Security Groups (NSG)
Azure Network Security Groups (NSG)Azure Network Security Groups (NSG)
Azure Network Security Groups (NSG)Shawn Ismail
 
A Deepdive into Azure Networking
A Deepdive into Azure NetworkingA Deepdive into Azure Networking
A Deepdive into Azure NetworkingKarim Vaes
 
CCI2018 - Azure Network - Security Best Practices
CCI2018 - Azure Network - Security Best PracticesCCI2018 - Azure Network - Security Best Practices
CCI2018 - Azure Network - Security Best Practiceswalk2talk srl
 
Microsoft Azure Security Overview
Microsoft Azure Security OverviewMicrosoft Azure Security Overview
Microsoft Azure Security OverviewAlert Logic
 
Networking deep dive
Networking deep diveNetworking deep dive
Networking deep diveJeroen Niesen
 
Kubernetes Architecture
Kubernetes Architecture Kubernetes Architecture
Kubernetes ArchitectureKnoldus Inc.
 
Azure fundamentals
Azure fundamentalsAzure fundamentals
Azure fundamentalsRaju Kumar
 
Microsoft Azure - Introduction to microsoft's public cloud
Microsoft Azure - Introduction to microsoft's public cloudMicrosoft Azure - Introduction to microsoft's public cloud
Microsoft Azure - Introduction to microsoft's public cloudAtanas Gergiminov
 
Microsoft Azure Security Overview - Microsoft - CSS Dallas Azure
Microsoft Azure Security Overview - Microsoft - CSS Dallas AzureMicrosoft Azure Security Overview - Microsoft - CSS Dallas Azure
Microsoft Azure Security Overview - Microsoft - CSS Dallas AzureAlert Logic
 
Azure vm introduction
Azure vm introductionAzure vm introduction
Azure vm introductionLalit Rawat
 

La actualidad más candente (20)

Azure vnet
Azure vnetAzure vnet
Azure vnet
 
Continues Integration and Continuous Delivery with Azure DevOps - Deploy Anyt...
Continues Integration and Continuous Delivery with Azure DevOps - Deploy Anyt...Continues Integration and Continuous Delivery with Azure DevOps - Deploy Anyt...
Continues Integration and Continuous Delivery with Azure DevOps - Deploy Anyt...
 
Part 01: Azure Virtual Networks – An Overview
Part 01: Azure Virtual Networks – An OverviewPart 01: Azure Virtual Networks – An Overview
Part 01: Azure Virtual Networks – An Overview
 
Introduction to Azure IaaS
Introduction to Azure IaaSIntroduction to Azure IaaS
Introduction to Azure IaaS
 
Azure Security Fundamentals
Azure Security FundamentalsAzure Security Fundamentals
Azure Security Fundamentals
 
Microsoft Azure Technical Overview
Microsoft Azure Technical OverviewMicrosoft Azure Technical Overview
Microsoft Azure Technical Overview
 
Azure Network Security Groups (NSG)
Azure Network Security Groups (NSG)Azure Network Security Groups (NSG)
Azure Network Security Groups (NSG)
 
Intro to Azure DevOps
Intro to Azure DevOpsIntro to Azure DevOps
Intro to Azure DevOps
 
A Deepdive into Azure Networking
A Deepdive into Azure NetworkingA Deepdive into Azure Networking
A Deepdive into Azure Networking
 
CCI2018 - Azure Network - Security Best Practices
CCI2018 - Azure Network - Security Best PracticesCCI2018 - Azure Network - Security Best Practices
CCI2018 - Azure Network - Security Best Practices
 
Microsoft Azure Security Overview
Microsoft Azure Security OverviewMicrosoft Azure Security Overview
Microsoft Azure Security Overview
 
Networking deep dive
Networking deep diveNetworking deep dive
Networking deep dive
 
Kubernetes Architecture
Kubernetes Architecture Kubernetes Architecture
Kubernetes Architecture
 
Azure DevOps
Azure DevOpsAzure DevOps
Azure DevOps
 
Introduction to Microsoft Azure Cloud
Introduction to Microsoft Azure CloudIntroduction to Microsoft Azure Cloud
Introduction to Microsoft Azure Cloud
 
Azure fundamentals
Azure fundamentalsAzure fundamentals
Azure fundamentals
 
Microsoft Azure - Introduction to microsoft's public cloud
Microsoft Azure - Introduction to microsoft's public cloudMicrosoft Azure - Introduction to microsoft's public cloud
Microsoft Azure - Introduction to microsoft's public cloud
 
Microsoft Azure Security Overview - Microsoft - CSS Dallas Azure
Microsoft Azure Security Overview - Microsoft - CSS Dallas AzureMicrosoft Azure Security Overview - Microsoft - CSS Dallas Azure
Microsoft Azure Security Overview - Microsoft - CSS Dallas Azure
 
Tour of Azure DevOps
Tour of Azure DevOpsTour of Azure DevOps
Tour of Azure DevOps
 
Azure vm introduction
Azure vm introductionAzure vm introduction
Azure vm introduction
 

Destacado

Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...
Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...
Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...Microsoft
 
Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...
Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...
Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...Shawn Ismail
 
Gouvernance et sécurisation de vos ressources cloud avec Azure Active Directo...
Gouvernance et sécurisation de vos ressources cloud avec Azure Active Directo...Gouvernance et sécurisation de vos ressources cloud avec Azure Active Directo...
Gouvernance et sécurisation de vos ressources cloud avec Azure Active Directo...Marius Zaharia
 
Session iot gwab 2014 paris
Session iot gwab 2014 parisSession iot gwab 2014 paris
Session iot gwab 2014 parisMarius Zaharia
 
Enter The Matrix Securing Azure’s Assets
Enter The Matrix Securing Azure’s AssetsEnter The Matrix Securing Azure’s Assets
Enter The Matrix Securing Azure’s AssetsBizTalk360
 
Ro IT Webinar - Masina Virtuala, calatorie catre cloud
Ro IT Webinar - Masina Virtuala, calatorie catre cloudRo IT Webinar - Masina Virtuala, calatorie catre cloud
Ro IT Webinar - Masina Virtuala, calatorie catre cloudMarius Zaharia
 
Soyez le maître du PRA - MS Cloud Summit Paris 2017
Soyez le maître du PRA - MS Cloud Summit Paris 2017Soyez le maître du PRA - MS Cloud Summit Paris 2017
Soyez le maître du PRA - MS Cloud Summit Paris 2017Marius Zaharia
 
Automati(sati)on de votre application Azure
Automati(sati)on de votre application AzureAutomati(sati)on de votre application Azure
Automati(sati)on de votre application AzureMarius Zaharia
 
Spinnaker for Azure
Spinnaker for AzureSpinnaker for Azure
Spinnaker for AzureLarry Guger
 
Sql Saturday Paris 2016 - De StreamInsight à Azure Stream Analytics
Sql Saturday Paris 2016 - De StreamInsight à Azure Stream Analytics Sql Saturday Paris 2016 - De StreamInsight à Azure Stream Analytics
Sql Saturday Paris 2016 - De StreamInsight à Azure Stream Analytics Marius Zaharia
 
Azure Web App services
Azure Web App servicesAzure Web App services
Azure Web App servicesAlexey Bokov
 
STB Proposal Presentation - Aviatrix
STB Proposal Presentation - AviatrixSTB Proposal Presentation - Aviatrix
STB Proposal Presentation - AviatrixTeamAviatrix
 
Identite-as-a-service pour vos applications B2C - MS Cloud Summit Paris 2017
Identite-as-a-service pour vos applications B2C - MS Cloud Summit Paris 2017Identite-as-a-service pour vos applications B2C - MS Cloud Summit Paris 2017
Identite-as-a-service pour vos applications B2C - MS Cloud Summit Paris 2017Marius Zaharia
 
Azure vnet connectivity solutions
Azure vnet connectivity solutionsAzure vnet connectivity solutions
Azure vnet connectivity solutionsswapnilrkambli
 
Microsoft Azure Training - [11]Azure Virtual Networks -Part 5 -Cross-premises...
Microsoft Azure Training - [11]Azure Virtual Networks -Part 5 -Cross-premises...Microsoft Azure Training - [11]Azure Virtual Networks -Part 5 -Cross-premises...
Microsoft Azure Training - [11]Azure Virtual Networks -Part 5 -Cross-premises...Shawn Ismail
 
CENTUM VP - 2014 version
CENTUM VP - 2014 versionCENTUM VP - 2014 version
CENTUM VP - 2014 versionYokogawa
 
Webinar: ForgeRock Identity Platform Preview (Dec 2015)
Webinar: ForgeRock Identity Platform Preview (Dec 2015)Webinar: ForgeRock Identity Platform Preview (Dec 2015)
Webinar: ForgeRock Identity Platform Preview (Dec 2015)ForgeRock
 
THE FORGEROCK PLATFORM BIG PICTURE
THE FORGEROCK PLATFORM BIG PICTURETHE FORGEROCK PLATFORM BIG PICTURE
THE FORGEROCK PLATFORM BIG PICTUREForgeRock
 

Destacado (20)

Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...
Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...
Modélisation, déploiement et gestion des infrastructures Cloud : outils et bo...
 
Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...
Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...
Microsoft Azure Training - [13] Azure Virtual Networks-Part 7-VNet-to-VNet Co...
 
Gouvernance et sécurisation de vos ressources cloud avec Azure Active Directo...
Gouvernance et sécurisation de vos ressources cloud avec Azure Active Directo...Gouvernance et sécurisation de vos ressources cloud avec Azure Active Directo...
Gouvernance et sécurisation de vos ressources cloud avec Azure Active Directo...
 
Session iot gwab 2014 paris
Session iot gwab 2014 parisSession iot gwab 2014 paris
Session iot gwab 2014 paris
 
Enter The Matrix Securing Azure’s Assets
Enter The Matrix Securing Azure’s AssetsEnter The Matrix Securing Azure’s Assets
Enter The Matrix Securing Azure’s Assets
 
Ro IT Webinar - Masina Virtuala, calatorie catre cloud
Ro IT Webinar - Masina Virtuala, calatorie catre cloudRo IT Webinar - Masina Virtuala, calatorie catre cloud
Ro IT Webinar - Masina Virtuala, calatorie catre cloud
 
Soyez le maître du PRA - MS Cloud Summit Paris 2017
Soyez le maître du PRA - MS Cloud Summit Paris 2017Soyez le maître du PRA - MS Cloud Summit Paris 2017
Soyez le maître du PRA - MS Cloud Summit Paris 2017
 
Patterns azure cloud
Patterns azure cloudPatterns azure cloud
Patterns azure cloud
 
Automati(sati)on de votre application Azure
Automati(sati)on de votre application AzureAutomati(sati)on de votre application Azure
Automati(sati)on de votre application Azure
 
Spinnaker for Azure
Spinnaker for AzureSpinnaker for Azure
Spinnaker for Azure
 
Sql Saturday Paris 2016 - De StreamInsight à Azure Stream Analytics
Sql Saturday Paris 2016 - De StreamInsight à Azure Stream Analytics Sql Saturday Paris 2016 - De StreamInsight à Azure Stream Analytics
Sql Saturday Paris 2016 - De StreamInsight à Azure Stream Analytics
 
Azure Web App services
Azure Web App servicesAzure Web App services
Azure Web App services
 
STB Proposal Presentation - Aviatrix
STB Proposal Presentation - AviatrixSTB Proposal Presentation - Aviatrix
STB Proposal Presentation - Aviatrix
 
Identite-as-a-service pour vos applications B2C - MS Cloud Summit Paris 2017
Identite-as-a-service pour vos applications B2C - MS Cloud Summit Paris 2017Identite-as-a-service pour vos applications B2C - MS Cloud Summit Paris 2017
Identite-as-a-service pour vos applications B2C - MS Cloud Summit Paris 2017
 
Azure vnet connectivity solutions
Azure vnet connectivity solutionsAzure vnet connectivity solutions
Azure vnet connectivity solutions
 
Serial buses
Serial busesSerial buses
Serial buses
 
Microsoft Azure Training - [11]Azure Virtual Networks -Part 5 -Cross-premises...
Microsoft Azure Training - [11]Azure Virtual Networks -Part 5 -Cross-premises...Microsoft Azure Training - [11]Azure Virtual Networks -Part 5 -Cross-premises...
Microsoft Azure Training - [11]Azure Virtual Networks -Part 5 -Cross-premises...
 
CENTUM VP - 2014 version
CENTUM VP - 2014 versionCENTUM VP - 2014 version
CENTUM VP - 2014 version
 
Webinar: ForgeRock Identity Platform Preview (Dec 2015)
Webinar: ForgeRock Identity Platform Preview (Dec 2015)Webinar: ForgeRock Identity Platform Preview (Dec 2015)
Webinar: ForgeRock Identity Platform Preview (Dec 2015)
 
THE FORGEROCK PLATFORM BIG PICTURE
THE FORGEROCK PLATFORM BIG PICTURETHE FORGEROCK PLATFORM BIG PICTURE
THE FORGEROCK PLATFORM BIG PICTURE
 

Similar a Azure Networking: Innovative Features and Multi-VNet Topologies

Azure Network and Infrastructure
Azure Network and InfrastructureAzure Network and Infrastructure
Azure Network and InfrastructurePhi Huynh
 
VMware NSX primer 2014
VMware NSX primer 2014VMware NSX primer 2014
VMware NSX primer 2014Sanjay Basu
 
CCI2019 - Architecting and Implementing Azure Networking
CCI2019 - Architecting and Implementing Azure NetworkingCCI2019 - Architecting and Implementing Azure Networking
CCI2019 - Architecting and Implementing Azure Networkingwalk2talk srl
 
Global Azure Bootcamp 2018 - Azure Network Security
Global Azure Bootcamp 2018 - Azure Network SecurityGlobal Azure Bootcamp 2018 - Azure Network Security
Global Azure Bootcamp 2018 - Azure Network SecurityScott Hoag
 
Server And Hardware Virtualization_Aakash1.1
Server And Hardware Virtualization_Aakash1.1Server And Hardware Virtualization_Aakash1.1
Server And Hardware Virtualization_Aakash1.1Aakash Agarwal
 
An Introduction to VMware NSX
An Introduction to VMware NSXAn Introduction to VMware NSX
An Introduction to VMware NSXScott Lowe
 
Brk30176 enterprise class networking in azure
Brk30176 enterprise class networking in azureBrk30176 enterprise class networking in azure
Brk30176 enterprise class networking in azureAbou CONDE
 
Kubernetes networking in AWS
Kubernetes networking in AWSKubernetes networking in AWS
Kubernetes networking in AWSZvika Gazit
 
Eucalyptus - An Open-source Infrastructure for Cloud Computing
Eucalyptus - An Open-source Infrastructure for Cloud ComputingEucalyptus - An Open-source Infrastructure for Cloud Computing
Eucalyptus - An Open-source Infrastructure for Cloud Computingelliando dias
 
Reference design for v mware nsx
Reference design for v mware nsxReference design for v mware nsx
Reference design for v mware nsxsolarisyougood
 
SDN 101: Software Defined Networking Course - Sameh Zaghloul/IBM - 2014
SDN 101: Software Defined Networking Course - Sameh Zaghloul/IBM - 2014SDN 101: Software Defined Networking Course - Sameh Zaghloul/IBM - 2014
SDN 101: Software Defined Networking Course - Sameh Zaghloul/IBM - 2014SAMeh Zaghloul
 
The Data Center Network Evolution
The Data Center Network EvolutionThe Data Center Network Evolution
The Data Center Network EvolutionCisco Canada
 
VMUGbe 21 Filip Verloy
VMUGbe 21 Filip VerloyVMUGbe 21 Filip Verloy
VMUGbe 21 Filip VerloyFilip Verloy
 
#NSD14 - Sécuriser l'infrastructure réseau des datacenters
#NSD14 - Sécuriser l'infrastructure réseau des datacenters#NSD14 - Sécuriser l'infrastructure réseau des datacenters
#NSD14 - Sécuriser l'infrastructure réseau des datacentersNetSecure Day
 
VMware nsx network virtualization tool
VMware nsx network virtualization toolVMware nsx network virtualization tool
VMware nsx network virtualization toolDaljeet Singh Randhawa
 
Banv meetup-contrail
Banv meetup-contrailBanv meetup-contrail
Banv meetup-contrailnvirters
 

Similar a Azure Networking: Innovative Features and Multi-VNet Topologies (20)

Azure Network and Infrastructure
Azure Network and InfrastructureAzure Network and Infrastructure
Azure Network and Infrastructure
 
VMware NSX primer 2014
VMware NSX primer 2014VMware NSX primer 2014
VMware NSX primer 2014
 
CCI2019 - Architecting and Implementing Azure Networking
CCI2019 - Architecting and Implementing Azure NetworkingCCI2019 - Architecting and Implementing Azure Networking
CCI2019 - Architecting and Implementing Azure Networking
 
Global Azure Bootcamp 2018 - Azure Network Security
Global Azure Bootcamp 2018 - Azure Network SecurityGlobal Azure Bootcamp 2018 - Azure Network Security
Global Azure Bootcamp 2018 - Azure Network Security
 
Server And Hardware Virtualization_Aakash1.1
Server And Hardware Virtualization_Aakash1.1Server And Hardware Virtualization_Aakash1.1
Server And Hardware Virtualization_Aakash1.1
 
An Introduction to VMware NSX
An Introduction to VMware NSXAn Introduction to VMware NSX
An Introduction to VMware NSX
 
Brk30176 enterprise class networking in azure
Brk30176 enterprise class networking in azureBrk30176 enterprise class networking in azure
Brk30176 enterprise class networking in azure
 
Kubernetes networking in AWS
Kubernetes networking in AWSKubernetes networking in AWS
Kubernetes networking in AWS
 
Cloud Computing
Cloud ComputingCloud Computing
Cloud Computing
 
Eucalyptus - An Open-source Infrastructure for Cloud Computing
Eucalyptus - An Open-source Infrastructure for Cloud ComputingEucalyptus - An Open-source Infrastructure for Cloud Computing
Eucalyptus - An Open-source Infrastructure for Cloud Computing
 
10052016115136.pptx
10052016115136.pptx10052016115136.pptx
10052016115136.pptx
 
CloudComp 2015 - SDN-Cloud Testbed with Hyper-convergent SmartX Boxes
CloudComp 2015 - SDN-Cloud Testbed with Hyper-convergent SmartX BoxesCloudComp 2015 - SDN-Cloud Testbed with Hyper-convergent SmartX Boxes
CloudComp 2015 - SDN-Cloud Testbed with Hyper-convergent SmartX Boxes
 
Reference design for v mware nsx
Reference design for v mware nsxReference design for v mware nsx
Reference design for v mware nsx
 
SDN 101: Software Defined Networking Course - Sameh Zaghloul/IBM - 2014
SDN 101: Software Defined Networking Course - Sameh Zaghloul/IBM - 2014SDN 101: Software Defined Networking Course - Sameh Zaghloul/IBM - 2014
SDN 101: Software Defined Networking Course - Sameh Zaghloul/IBM - 2014
 
The Data Center Network Evolution
The Data Center Network EvolutionThe Data Center Network Evolution
The Data Center Network Evolution
 
Contrail Enabler for agile cloud services
Contrail Enabler for agile cloud servicesContrail Enabler for agile cloud services
Contrail Enabler for agile cloud services
 
VMUGbe 21 Filip Verloy
VMUGbe 21 Filip VerloyVMUGbe 21 Filip Verloy
VMUGbe 21 Filip Verloy
 
#NSD14 - Sécuriser l'infrastructure réseau des datacenters
#NSD14 - Sécuriser l'infrastructure réseau des datacenters#NSD14 - Sécuriser l'infrastructure réseau des datacenters
#NSD14 - Sécuriser l'infrastructure réseau des datacenters
 
VMware nsx network virtualization tool
VMware nsx network virtualization toolVMware nsx network virtualization tool
VMware nsx network virtualization tool
 
Banv meetup-contrail
Banv meetup-contrailBanv meetup-contrail
Banv meetup-contrail
 

Más de Marius Zaharia

Multi-Tenant Identity and Azure Resource Governance - Identity Days 2019
Multi-Tenant Identity and Azure Resource Governance - Identity Days 2019Multi-Tenant Identity and Azure Resource Governance - Identity Days 2019
Multi-Tenant Identity and Azure Resource Governance - Identity Days 2019Marius Zaharia
 
Onboard a Historical Company on the Cloud Journey
Onboard a Historical Company on the Cloud JourneyOnboard a Historical Company on the Cloud Journey
Onboard a Historical Company on the Cloud JourneyMarius Zaharia
 
Multi-Tenant Identity and Azure Resource Governance - ReBUILD 2019
Multi-Tenant Identity and Azure Resource Governance - ReBUILD 2019Multi-Tenant Identity and Azure Resource Governance - ReBUILD 2019
Multi-Tenant Identity and Azure Resource Governance - ReBUILD 2019Marius Zaharia
 
Azure Firewall (Meetup Société Générale - dec 2018)
Azure Firewall (Meetup Société Générale - dec 2018)Azure Firewall (Meetup Société Générale - dec 2018)
Azure Firewall (Meetup Société Générale - dec 2018)Marius Zaharia
 
Onboarding a Historical Company on the Cloud Journey (IT Camp 2018)
Onboarding a Historical Company on the Cloud Journey (IT Camp 2018)Onboarding a Historical Company on the Cloud Journey (IT Camp 2018)
Onboarding a Historical Company on the Cloud Journey (IT Camp 2018)Marius Zaharia
 
Modern Architecture in the Cloud of 2018 (IT Camp 2018)
Modern Architecture in the Cloud of 2018 (IT Camp 2018)Modern Architecture in the Cloud of 2018 (IT Camp 2018)
Modern Architecture in the Cloud of 2018 (IT Camp 2018)Marius Zaharia
 
Modern Architecture in the Cloud of 2018
Modern Architecture in the Cloud of 2018Modern Architecture in the Cloud of 2018
Modern Architecture in the Cloud of 2018Marius Zaharia
 
Architecture Moderne dans le Cloud en 2018
Architecture Moderne dans le Cloud en 2018Architecture Moderne dans le Cloud en 2018
Architecture Moderne dans le Cloud en 2018Marius Zaharia
 
Onboarding a Historical Company on the Cloud Journey
Onboarding a Historical Company on the Cloud JourneyOnboarding a Historical Company on the Cloud Journey
Onboarding a Historical Company on the Cloud JourneyMarius Zaharia
 
APIs dans Azure : serverless ou pas serverless?
APIs dans Azure : serverless ou pas serverless?APIs dans Azure : serverless ou pas serverless?
APIs dans Azure : serverless ou pas serverless?Marius Zaharia
 
One Azure Monitor to Rule Them All? (IT Camp 2017, Cluj, RO)
One Azure Monitor to Rule Them All? (IT Camp 2017, Cluj, RO)One Azure Monitor to Rule Them All? (IT Camp 2017, Cluj, RO)
One Azure Monitor to Rule Them All? (IT Camp 2017, Cluj, RO)Marius Zaharia
 
La santé de votre environnement Azure, entre Monitor, AppInsights et Log Anal...
La santé de votre environnement Azure, entre Monitor, AppInsights et Log Anal...La santé de votre environnement Azure, entre Monitor, AppInsights et Log Anal...
La santé de votre environnement Azure, entre Monitor, AppInsights et Log Anal...Marius Zaharia
 
Azure Integration Services : les concepts de BizTalk dans le cloud (ARC303)
Azure Integration Services : les concepts de BizTalk dans le cloud (ARC303)Azure Integration Services : les concepts de BizTalk dans le cloud (ARC303)
Azure Integration Services : les concepts de BizTalk dans le cloud (ARC303)Marius Zaharia
 

Más de Marius Zaharia (13)

Multi-Tenant Identity and Azure Resource Governance - Identity Days 2019
Multi-Tenant Identity and Azure Resource Governance - Identity Days 2019Multi-Tenant Identity and Azure Resource Governance - Identity Days 2019
Multi-Tenant Identity and Azure Resource Governance - Identity Days 2019
 
Onboard a Historical Company on the Cloud Journey
Onboard a Historical Company on the Cloud JourneyOnboard a Historical Company on the Cloud Journey
Onboard a Historical Company on the Cloud Journey
 
Multi-Tenant Identity and Azure Resource Governance - ReBUILD 2019
Multi-Tenant Identity and Azure Resource Governance - ReBUILD 2019Multi-Tenant Identity and Azure Resource Governance - ReBUILD 2019
Multi-Tenant Identity and Azure Resource Governance - ReBUILD 2019
 
Azure Firewall (Meetup Société Générale - dec 2018)
Azure Firewall (Meetup Société Générale - dec 2018)Azure Firewall (Meetup Société Générale - dec 2018)
Azure Firewall (Meetup Société Générale - dec 2018)
 
Onboarding a Historical Company on the Cloud Journey (IT Camp 2018)
Onboarding a Historical Company on the Cloud Journey (IT Camp 2018)Onboarding a Historical Company on the Cloud Journey (IT Camp 2018)
Onboarding a Historical Company on the Cloud Journey (IT Camp 2018)
 
Modern Architecture in the Cloud of 2018 (IT Camp 2018)
Modern Architecture in the Cloud of 2018 (IT Camp 2018)Modern Architecture in the Cloud of 2018 (IT Camp 2018)
Modern Architecture in the Cloud of 2018 (IT Camp 2018)
 
Modern Architecture in the Cloud of 2018
Modern Architecture in the Cloud of 2018Modern Architecture in the Cloud of 2018
Modern Architecture in the Cloud of 2018
 
Architecture Moderne dans le Cloud en 2018
Architecture Moderne dans le Cloud en 2018Architecture Moderne dans le Cloud en 2018
Architecture Moderne dans le Cloud en 2018
 
Onboarding a Historical Company on the Cloud Journey
Onboarding a Historical Company on the Cloud JourneyOnboarding a Historical Company on the Cloud Journey
Onboarding a Historical Company on the Cloud Journey
 
APIs dans Azure : serverless ou pas serverless?
APIs dans Azure : serverless ou pas serverless?APIs dans Azure : serverless ou pas serverless?
APIs dans Azure : serverless ou pas serverless?
 
One Azure Monitor to Rule Them All? (IT Camp 2017, Cluj, RO)
One Azure Monitor to Rule Them All? (IT Camp 2017, Cluj, RO)One Azure Monitor to Rule Them All? (IT Camp 2017, Cluj, RO)
One Azure Monitor to Rule Them All? (IT Camp 2017, Cluj, RO)
 
La santé de votre environnement Azure, entre Monitor, AppInsights et Log Anal...
La santé de votre environnement Azure, entre Monitor, AppInsights et Log Anal...La santé de votre environnement Azure, entre Monitor, AppInsights et Log Anal...
La santé de votre environnement Azure, entre Monitor, AppInsights et Log Anal...
 
Azure Integration Services : les concepts de BizTalk dans le cloud (ARC303)
Azure Integration Services : les concepts de BizTalk dans le cloud (ARC303)Azure Integration Services : les concepts de BizTalk dans le cloud (ARC303)
Azure Integration Services : les concepts de BizTalk dans le cloud (ARC303)
 

Último

Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Neo4j
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking MenDelhi Call girls
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processorsdebabhi2
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfsudhanshuwaghmare1
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024The Digital Insurer
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)wesley chun
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Enterprise Knowledge
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Scriptwesley chun
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?Igalia
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024The Digital Insurer
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 
What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?Antenna Manufacturer Coco
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsJoaquim Jorge
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking MenDelhi Call girls
 

Último (20)

Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
 
What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 

Azure Networking: Innovative Features and Multi-VNet Topologies

  • 1. Azure Multi-VNET Architectures and Topologies Marius Zaharia 03/12/2016
  • 2. 1 Business scenario 4 Scripting and automation 5 Technical solution Demo 2 Networking services Architecture and topologies3 6
  • 3. Cellenza : des experts reconnus dans le Cloud, DevOps, Intégration, … 10 Azure C# ALM SQL Server Windows Client 1 4 Des publications : • Livres blancs (Cell’Insights) • http://www.cellenza.com/cellinsights • Articles dans Programmez! • Blog Cellenza • http://blog.cellenza.com • Organisation de TechEvent • Speakers lors de conférences Microsoft • TechDays, Azure Camp, …
  • 4. Marius Zaharia Senior Cloud Architect Efficient & Visionary “Manage Teams Architectures Understand ComplexInternational + Mon expérience + Mon expertise IDÉATION CONCEPTION WIREFRAMES Marius apporte aux clients son expertise et expérience dans l’analyse, conception et développement d’applications complexes d’entreprise et d’intégration applicative et d’infrastructure basées principalement sur des technologies Microsoft. Son profile lui permet d’aborder les architectures Cloud Computing, SOA, hybridation et urbanisation des SI dans des missions polyvalentes solution/développement et IT pro. Marius travaille également dans les activités de Business Development et avant-vente de Cellenza, étant P-SELLER Azure (en partenariat avec Microsoft). Dans le monde communautaire, Marius est impliqué dans l’organisation d’AZUG FR – Azure User Group France et des conférences comme Global Azure Bootcamp, MS Cloud Summit, des meetups réguliers avec la communauté Azure etc. DevOps P-SELLER Azure
  • 5. Introduction  “Azure VNET to VNET VPN, across regions and data centers: not so complicated”  Connection between multiple Azure Virtual Networks, in particular a VNET- to-VNET-to-VNET relationship  All based on PowerShell scripting and classic deployment in Azure  Azure moving to ARM deployment model and the new (modern) portal  Migration of existing features to ARM  Migration to the new portal  New innovative features
  • 7. Business Case  Multiple environments communicating with each other  In the same Azure region  Across 2 regions  With the on-premises environments  Implement network connectivity between the environments  CONCRETE EXEMPLE: SQL Server AlwaysOn distributed cluster  1 master replica in Dublin  1 secondary replica (synchronous) in Dublin  1 secondary replica (asynchronous) in Amsterdam
  • 10. Azure Networks  Virtual Network: logical isolation of the Azure cloud dedicated to your subscription  Subnet: range of IP addresses in the VNet, divided for organization and security  Public IP: allow Azure resources to communicate with Internet and Azure public-facing services  Network Interface Card: interconnection between a Virtual Machine (VM) and the underlying software network  VPN Gateway: Azure service used to send network traffic between Azure virtual networks and other locations  ExpressRoute: lets you extend your on-premises networks into the Microsoft cloud over a dedicated private connection facilitated by a connectivity provider  Network Security Group: allow you to control inbound and outbound access to network interfaces, VMs, and subnets, based on a list of access control list (ACL)  User Defined Routes: specify the next hop for packets flowing to a specific subnet  IP Forwarding: Azure setting for a VM allowing it to receive traffic addressed to other destinations  Virtual Appliance: VM in your VNet that runs a software based appliance function, such as firewall, WAN optimization, or intrusion detection
  • 11. Azure Networking: VNET Peering  VNet peering: a mechanism that connects two VNets in the same region through the Azure backbone network  Once peered, the two virtual networks appear as one for all connectivity purposes  Low-latency, high-bandwidth connection  Can connect ARM-to-ARM Vnet, or ARM-to-Classic  Requirements and key aspects  in the same Azure region.  non-overlapping IP address spaces.  no derived transitive relationship  Peering two different subscriptions possible, but under conditions*  Peering between ARM and Classic, under conditions*  No Classic to Classic  Networking bandwidth cap based on VM size still applies
  • 12. Azure Networking: Load Balancer Azure Load Balancer  Layer 4 (TCP, UDP)  Services  Load balancing  Internet-facing  Internal  Traffic forwarding (NAT)  Features  Load balancer: hash-based distrib.  Port forwarding  Automatic configuration  Service health monitoring  Source NAT (SNAT)  multiple load-balanced IP addresses for VMs  Probes  TCP  HTTP/S  Guest agent (for PaaS only)
  • 13. Azure networking: Traffic Manager  Controls the distribution of user traffic for service endpoints in different datacenters  uses DNS to direct client requests  Features  Traffic-routing methods  Priority  Weighted  Performance  Nested Traffic Manager profiles  Monitoring of endpoint health  Automatic failover
  • 14. Azure Networking: Application Gateway  Application Gateway  Application Delivery Controller (ADC) as a service  layer 7 load balancing  Features  Web Application Firewall (Preview)  HTTP load balancing  Cookie-based session affinity  SSL offload; end to end SSL  URL-based content routing  Multi-site routing (up to 20)  Websocket support  Health monitoring  Advanced diagnostics
  • 15. Load Balancer differences  Azure Load Balancer works at the transport layer (Layer 4 in the OSI network reference stack). It provides network-level distribution of traffic across instances of an application running in the same Azure data center.  Application Gateway works at the application layer (Layer 7 in the OSI network reference stack). It acts as a reverse-proxy service, terminating the client connection and forwarding requests to back- end endpoints.  Traffic Manager works at the DNS level. It uses DNS responses to direct end-user traffic to globally distributed endpoints. Clients then connect to those endpoints directly.
  • 17. Azure Networking - Cross-Premises Connections Cross-premises connection options :  Site-to-Site – VPN connection over IPsec (IKE v1 and IKE v2). This type of connection requires a VPN physical or virtual (RRAS) device.  Point-to-Site – VPN connection over SSTP (Secure Socket Tunneling Protocol). This connection does not require a VPN device.  VNet-to-VNet – This type of connection is the same as a Site-to-Site configuration. VNet to VNet is a VPN connection over IPsec (IKE v1 and IKE v2). It does not require a VPN device.  Multi-Site – This is a variation of a Site-to-Site configuration that allows you to connect multiple on-premises sites to a virtual network.  ExpressRoute – ExpressRoute is a direct connection to Azure from your WAN, not over the public Internet. See the ExpressRoute Technical Overview and the ExpressRoute FAQ for more information.
  • 19. On-premises NetworkVNET 1 Simple Hybrid Topology (point-to-point) VPN IPSec G W G W VNET – S2S IPSec VPN to On-premises Site-to-Site – VPN connection over IPsec (IKE v1 and IKE v2). This type of connection requires a VPN physical or virtual (RRAS) device.
  • 20. On-premises NetworkVNET 1 Simple Hybrid Topology (point-to-point) VPN IPSec G W G WExpressRoute VNET – S2S IPSec VPN with on-premises VNET – ExpressRoute With on-premises Direct connection to Azure from your WAN, not over the public Internet.
  • 21. VNET 2VNET 1 Simple Cloud-Only Topology VPN IPSec G W G W VNet-to-VNet – This type of connection is the same as a Site-to- Site configuration. It’s a VPN connection over IPsec (IKE v1 and IKE v2). It does not require a VPN device. (executed over MS Backbone transport layer)
  • 22. VNET 2VNET 1 Simple Cloud-Only Topology G W G WExpressRoute VNet-to-VNet – This type of connection is the same as a Site-to- Site configuration. It’s a VPN connection over IPsec (IKE v1 and IKE v2). It does not require a VPN device. (executed over MS Backbone transport layer)
  • 23. VNET 2VNET 1 Simple Cloud-Only Topology Peering VNET – peering to VNET Transport Backbone intra- datacenter
  • 25. VNET 2 Complex Topologies VNET 4 VNET 5 VNET 3 VNET 1 « HUB & SPOKE » • Configure simple bidirectional communications between the master VNET end the satellite VNETs. • Any of the direct connectivity options described before (IPSec VPN, ExpressRoute if the case, or Peering) can be used here.
  • 26. VNET 2 Complex Topologies VNET 3 VNET 1 « DAISY CHAIN » • Transitivity: the VNET 1 will communicate with the VNET 3 via specific routing configuration set up in the VNET 2 • advantage : getting profit of a connection already established for the usage of another VNET • inconvenient: if the VNET 2 (or its gateway) loses its connectivity, it will also affect the connectivity between the lateral VNETs.
  • 27. VNET 1 Complex Topologies VNET 2 VNET 3 VNET 4 « (FULL) MESH » • Let you master the direct connectivity between various VNETs, without having dependencies on intermediate VNETs or their gateways • much more work to getting it done • it’s up to you to decide which VNET communicate with which one Do it in Azure? • VPN gateways & bidirectional connections • VNET peerings
  • 29. Technical Solution The solution is composed of 3 main segments: 1. VNET Peering between VNET2 and VNET1 (both VNETs being in the same region) 2. Site-to-Site VPN connection between VNET1 (Dublin) and VNET3 (Amsterdam), with VPN Gateways deployed in both VNETs 3. Transitivity for the VNET2 to VNET3 through the VPN Gateway 1. This connection transitivity will be configured in the VNET Peering settings directly
  • 30. Technical Solution - Diagram VNET 3VNET 1 VPN IPSec G W G W VNET 2 DC DUBLIN DC AMSTERDAM Master (Primary) Replica Secondary Replica 1 Secondary Replica 2VNET 4
  • 33. Thank you ! Go to the blogs : - blog.lecampusazure.net (EN) - blog.cellenza.com (FR) The sources are on github.com/lecampusazure

Notas del editor

  1. SCHEMA VNET 1, 2 Dublin; 3 Amsterdam VNET 2 – peering – VNET1 – VPN GW – VNET3
  2. Simulation création portal Show-up RG déjà provisionné VMs en remote : test de connectivité