Microsoft Azure Networking: The Definitive Guide
Proven best practices for success with every Azure networking service

For cloud environments to operate and scale optimally, their networking services must be designed, deployed, and managed well. Now, there’s a complete, best-practice guide to doing just that. Writing for everyone involved in delivering Azure workloads and services, leading cloud consultant Avinash Valiramani provides a deep dive and practical field advice for Azure Virtual Networks, Azure VPN Gateways, Azure Load Balancing, Azure Traffic Manager, Azure Firewall, Azure DNS, Azure Bastion, Azure Front Door and more. Whatever your role in delivering efficient, scalable networking services, this guide will help you make the most of your Azure investment.

Leading Azure consultant Avinash Valiramani shows how to:

  • Use Azure Virtual Networks to establish a backbone for hosting other Azure resources
  • Provide HTTP/HTTPS load-balancing and routing for web servers and apps through Azure Application Gateway
  • Connect on-premises and other public networks to Azure for secure communications using the Azure VPN Gateway service
  • Provide secure load balancing to apps from internal and public networks using Azure Load Balancer services
  • Integrate Azure Firewall to centrally protect Azure resources across multiple subscriptions
  • Access globally scaled, fully-managed DNS services with 100% SLA from the closest Azure DNS servers
  • Provide optimal network routing to the closest application endpoint for public-facing applications with Azure Traffic Manager
  • Use Microsoft’s global edge network along with Azure Front Door to speed up access, harden security and enhance scalability for consuming-facing and internal web applications

Also look for these Definitive Guides to Azure success:

  • Microsoft Azure Compute: The Definitive Guide
  • Microsoft Azure Monitoring and Management: The Definitive Guide
  • Microsoft Azure Storage: The Definitive Guide
1140555810
Microsoft Azure Networking: The Definitive Guide
Proven best practices for success with every Azure networking service

For cloud environments to operate and scale optimally, their networking services must be designed, deployed, and managed well. Now, there’s a complete, best-practice guide to doing just that. Writing for everyone involved in delivering Azure workloads and services, leading cloud consultant Avinash Valiramani provides a deep dive and practical field advice for Azure Virtual Networks, Azure VPN Gateways, Azure Load Balancing, Azure Traffic Manager, Azure Firewall, Azure DNS, Azure Bastion, Azure Front Door and more. Whatever your role in delivering efficient, scalable networking services, this guide will help you make the most of your Azure investment.

Leading Azure consultant Avinash Valiramani shows how to:

  • Use Azure Virtual Networks to establish a backbone for hosting other Azure resources
  • Provide HTTP/HTTPS load-balancing and routing for web servers and apps through Azure Application Gateway
  • Connect on-premises and other public networks to Azure for secure communications using the Azure VPN Gateway service
  • Provide secure load balancing to apps from internal and public networks using Azure Load Balancer services
  • Integrate Azure Firewall to centrally protect Azure resources across multiple subscriptions
  • Access globally scaled, fully-managed DNS services with 100% SLA from the closest Azure DNS servers
  • Provide optimal network routing to the closest application endpoint for public-facing applications with Azure Traffic Manager
  • Use Microsoft’s global edge network along with Azure Front Door to speed up access, harden security and enhance scalability for consuming-facing and internal web applications

Also look for these Definitive Guides to Azure success:

  • Microsoft Azure Compute: The Definitive Guide
  • Microsoft Azure Monitoring and Management: The Definitive Guide
  • Microsoft Azure Storage: The Definitive Guide
44.99 In Stock
Microsoft Azure Networking: The Definitive Guide

Microsoft Azure Networking: The Definitive Guide

by Avinash Valiramani
Microsoft Azure Networking: The Definitive Guide

Microsoft Azure Networking: The Definitive Guide

by Avinash Valiramani

Overview

Proven best practices for success with every Azure networking service

For cloud environments to operate and scale optimally, their networking services must be designed, deployed, and managed well. Now, there’s a complete, best-practice guide to doing just that. Writing for everyone involved in delivering Azure workloads and services, leading cloud consultant Avinash Valiramani provides a deep dive and practical field advice for Azure Virtual Networks, Azure VPN Gateways, Azure Load Balancing, Azure Traffic Manager, Azure Firewall, Azure DNS, Azure Bastion, Azure Front Door and more. Whatever your role in delivering efficient, scalable networking services, this guide will help you make the most of your Azure investment.

Leading Azure consultant Avinash Valiramani shows how to:

  • Use Azure Virtual Networks to establish a backbone for hosting other Azure resources
  • Provide HTTP/HTTPS load-balancing and routing for web servers and apps through Azure Application Gateway
  • Connect on-premises and other public networks to Azure for secure communications using the Azure VPN Gateway service
  • Provide secure load balancing to apps from internal and public networks using Azure Load Balancer services
  • Integrate Azure Firewall to centrally protect Azure resources across multiple subscriptions
  • Access globally scaled, fully-managed DNS services with 100% SLA from the closest Azure DNS servers
  • Provide optimal network routing to the closest application endpoint for public-facing applications with Azure Traffic Manager
  • Use Microsoft’s global edge network along with Azure Front Door to speed up access, harden security and enhance scalability for consuming-facing and internal web applications

Also look for these Definitive Guides to Azure success:

  • Microsoft Azure Compute: The Definitive Guide
  • Microsoft Azure Monitoring and Management: The Definitive Guide
  • Microsoft Azure Storage: The Definitive Guide

Product Details

ISBN-13: 9780137569892
Publisher: Pearson Education
Publication date: 08/04/2022
Series: IT Best Practices - Microsoft Press
Pages: 240
Product dimensions: 7.40(w) x 9.20(h) x 0.63(d)

About the Author

Avinash Valiramani is an IT Infrastructure and Cloud Architect with more than 15 years of expertise in areas of Microsoft Technologies such as Microsoft Azure, Microsoft 365, Office365, Windows Server, Microsoft Exchange, SCCM, Intune, Hyper-V, and others. He is a certified Architect on Azure and Microsoft365 and primarily helps enterprises globally in their Cloud Roadmap Architecture and Onboarding/Migration Strategies & Implementation. Avinash is publishing four books on Microsoft Azure Best Practices series including this current one, collating real-world experiences to deliver a comprehensive and concise experience for new and budding technologists. Avinash also holds certifications in Barracuda, AWS, Citrix, VMware, and many other IT/Security industry certifications to complement his Microsoft expertise. He has authored a course of Azure Virtual Desktop for Oreilly Media and is planning many others in the coming months. You can follow Avinash on Twitter at @avaliramani.

Table of Contents

About the author xiii

Acknowledgments xv

Introduction to Azure networking services xvii

Chapter 1 Azure virtual networks 1

Overview 1

Azure virtual networks features 1

Design concepts and deployment considerations 2

Address space 2

Subnets 2

vNET peering 2

Routing 3

Network security groups (NSGs) 6

Availability zones support 6

vNET network address translation (NAT) 7

Integrations for enhanced security 7

Service tags 7

Disaster recovery planning 8

vNET walkthrough 8

Best practices 12

Chapter 2 Azure Application Gateway 15

Overview 15

Azure Application Gateway features 16

Design concepts and deployment considerations 18

Front-end IP addresses 19

Back-end pools 20

Listeners 20

Request routing rules 21

HTTP settings 22

Health probes 23

Sizing and scaling 23

TLS policy 23

Application gateway walkthrough 24

Best practices 33

Chapter 3 Azure VPN gateway 35

Overview 35

Azure VPN gateway features 35

Design concepts and deployment considerations 36

VPN types 37

Gateway SKUs 37

Connection types 37

Gateway subnet 38

Border Gateway Protocol (BGP) 38

Local network gateways 38

VPN gateway redundancy 39

Deployment models 39

Best practices 54

Chapter 4 Azure Load Balancer 55

Overview 55

Azure Load Balancer features 56

Design concepts and deployment considerations 56

Front-end IP address 57

Back-end pool 57

Health probes 57

Load-balancing rules 58

Load-balancing algorithms 60

Availability zones 61

Azure Load Balancer walkthrough 62

Best practices 74

Chapter 5 Azure Firewall 77

Overview 77

Azure Firewall features 78

Design concepts and deployment considerations 79

Support for availability zones 79

Inbound DNAT 79

Outbound SNAT 79

Traffic filtering 80

Groupings 81

Forced tunneling 83

Threat intelligence 83

Azure Firewall Manager 83

Classic rules versus firewall policies 84

Firewall rule processing 84

DNS proxy 86

Active FTP support 86

Azure Monitor logging 86

Azure Firewall deployment walkthrough 87

Best practices 100

Chapter 6 Azure DNS 103

Overview 103

Azure DNS features 103

Azure DNS limitations 104

Design and configuration considerations 105

Types of DNS zones 105

Linking with Azure virtual networks 109

Auto registration 111

Alias record sets 113

Reverse DNS lookup 116

Zone delegation 119

Best practices 119

Chapter 7 Azure Traffic Manager 123

Overview 123

Traffic Manager features 123

Design concepts and deployment considerations 124

Traffic Manager endpoints 124

Nested Traffic Manager profiles 126

Traffic routing methods 127

Endpoint monitoring 133

Traffic Manager walkthrough 134

Best practices 141

Chapter 8 Azure Front Door 145

Overview 145

Key features 145

Design concepts and deployment considerations 146

Back ends 147

Back-end pools 147

Health probes 148

Load balancing 148

Traffic routing 148

URL rewrite 149

URL redirect 149

Wildcard domains 151

Rules Engine 151

Caching 151

Network and security 153

Azure DDoS Protection Basic 153

Protection against unwanted protocols 153

Handling large volumes of traffic 153

WAF security features 154

Front Door service walkthrough 154

Best practices 165

Chapter 9 Azure Bastion 167

Overview 167

Azure Bastion features 167

Azure Bastion limitations 168

Design concepts and deployment considerations 169

Architecture 169

SKUs 171

High-availability hosts 171

Virtual network peering 171

Disaster recovery 171

Service requirements 172

Best practices 179

Chapter 10 Azure Private Link 183

Overview 183

Azure Private Link features 183

Design concepts and deployment considerations 184

Private endpoints 184

Azure Private Link service 192

Best practices 200

Index 201

From the B&N Reads Blog
Page 1 of

Related Subjects

Computers
Networking & Telecommunications
Operating Systems - Computer Networks
Computers
Networking & Telecommunications
Operating Systems - Computer Networks

Customer Reviews