Book Image

Azure Networking Cookbook

By : Mustafa Toroman
Book Image

Azure Networking Cookbook

By: Mustafa Toroman

Overview of this book

Microsoft provides organizations with an effective way of managing their network with Azure's networking services. No matter the size of your organization, Azure provides a way to highly reliable performance and secure connectivity with its networking services. The book starts with an introduction to the Azure networking like creating Azure virtual networks, designing address spaces and subnets. Then you will learn to create and manage network security groups, application security groups, and IP addresses in Azure. Gradually, we move on to various aspects like S2S, P2S, and Vnet2Vnet connections, DNS and routing, load balancers and traffic manager. This book will cover every aspect and function required to deliver practical recipes to help readers learn from basic cloud networking practices to planning, implementing, and securing their infrastructure network with Azure. Readers will not only be able to upscale their current environment but will also learn to monitor, diagnose, and ensure secure connectivity. After learning to deliver a robust environment readers will also gain meaningful insights from recipes on best practices. By the end of this book, readers will gain hands-on experience in providing cost-effective solutions that benefit organizations.

Related Content you might be interested in

Current Title:

Small book image
Azure Networking Cookbook
Mustafa Toroman
Mar, 2019 | 234 pages
Small book image
Hands-On Networking with Azure
Mohamed Waly
Mar, 2018 | 276 pages
Small book image
Hands-On Cloud Administration in Azure
Mustafa Toroman
Oct, 2018 | 390 pages
Small book image
Microsoft Azure Administrator ??? Exam Guide AZ-103
Sjoukje Zaal
May, 2019 | 452 pages
Table of Contents (13 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Sections
Get in touch
Free Chapter
1
Azure Virtual Network
Azure Virtual Network
Technical requirements
Creating a virtual network in the portal
Creating a virtual network with PowerShell
Adding a subnet in the portal
Adding a subnet with PowerShell
Changing the address space size
Changing the subnet size
2
Virtual Machine Networking
Virtual Machine Networking
Technical requirements
Creating Azure VMs
Viewing VM network settings
Creating a new network interface
Attaching a network interface to a VM
Detaching a network interface from a VM
3
Network Security Groups
Network Security Groups
Technical requirements
Creating a new NSG in a portal
Creating a new NSG with PowerShell
Creating a new allow rule in NSG
Creating a new deny rule in NSG
Creating a new NSG rule with PowerShell
Assigning an NSG to a subnet
Assigning an NSG to a network interface
Assigning an NSG with PowerShell
Creating an Application Security Group (ASG)
Associating an ASG with a VM
Creating rules with an NSG and an ASG
4
Managing IP Addresses
Managing IP Addresses
Technical requirements
Creating a new public IP address in the portal
Creating a new public IP address with PowerShell
Assigning a public IP address
Unassigning a public IP address
Creating a reservation for a public IP address
Removing a reservation for a public IP address
Creating a reservation for a private IP address
Changing a reservation for a private IP address
Removing a reservation for a private IP address
5
Local and Virtual Network Gateways
Local and Virtual Network Gateways
Technical requirements
Creating a local network gateway in the portal
Creating a local network gateway with PowerShell
Creating a virtual network gateway in the portal
Creating a virtual network gateway with PowerShell
Modifying the local network gateway settings
6
Creating Hybrid Connections
Creating Hybrid Connections
Technical requirements
Creating a Site-2-Site connection
Downloading the VPN device configuration from Azure
Creating a Point-2-Site connection
Creating a VNet-2-VNet connection
Connecting VNets using network peering
7
DNS and Routing
DNS and Routing
Technical requirements
Creating an Azure DNS zone
Creating a new record set and record in Azure DNS
Creating a route table
Changing the route table
Associating a route table to a subnet
Dissociating a route table from the subnet
Creating a new route
Changing a route
Deleting a route
8
Load Balancers
Load Balancers
Technical requirements
Creating an internal load balancer
Creating a public load balancer
Creating a backend pool
Creating health probes
Creating load balancer rules
Creating inbound Network Address Translation (NAT) rules
9
Traffic Manager
Traffic Manager
Technical requirements
Creating a new Traffic Manager profile
Adding an endpoint
Configuring distributed traffic
Configuring traffic based on priority
Configuring traffic based on geographical location
Managing endpoint
Managing profiles
Configuring Traffic Manager with load balancers
10
Azure Application Gateway
Azure Application Gateway
Technical requirements
Creating a new application gateway
Configuring the backend pool
Creating HTTP settings
Creating a listener
Creating a rule
Creating a probe
Configuring a WAF
Customizing WAF rules
11
Azure Firewall
Azure Firewall
Technical requirements
Creating a new Azure Firewall
Configuring a new allow rule
Configuring a new deny rule
Configuring a route table
Enabling diagnostic logs for Azure Firewall
12
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think

Adding a subnet in the portal

Beside adding subnets while creating a virtual network, we can add additional subnets to our network at any time.

Getting ready

Before you start, open a web browser and go to the Azure portal at https://portal.azure.com. Here, locate the previously created virtual network.

How to do it...

In order to add a subnet to a virtual network using the Azure portal, we must use the following steps:

  1. In the virtual network blade, go to the Subnets section.
  2. Select the Add subnet option.
  1. A new blade will open. We need to provide information for the subnet, including Name and Address range in the CIDR format. Address range must be in the range limit of the virtual network address range and cannot overlap with the address range of other subnets in the virtual network. Optionally, we can add information for Network security group, Route tables, Service endpoints, and Subnet delegation. These options will be covered in later recipes:
  2. We can also add a gateway subnet in the same blade. To add a gateway subnet, select the Gateway subnet option.

For a gateway subnet, the only parameter we need to define is Address range. The same rules apply as for adding a regular subnet. This time, we don't have to provide a name as it's already defined. You can add only one gateway subnet per virtual network. Service endpoints are not allowed in the gateway subnet:

  1. After the subnets are added, we can see the newly created subnets in the subnet blade under the virtual network:

How it works...

A single virtual network can have a multiple number of subnets defined. Subnets can't overlap and must be in the range of the virtual network address range. For each subnet, four IP addresses are used for management and can't be used. Depending on the network settings, we can define the communication rules between subnets in the virtual network. A gateway subnet is used for VPN connections, and this will be covered in later chapters.

Previous Section
End of Section 5
Next Section