Thoughts from the clouds
In a previous blog post I have described the features of the new Azure Route Server I am most excited about, as well as a possible setup to create a hub and spoke design with firewall NVAs (Network Virtual Appliance) across multiple regions here. In this one I will focus on how to integrate the … Continue reading Connecting your NVAs to ExpressRoute with Azure Route Server
In my previous blog I wrote my view on the characteristics of the new Azure Route Server that I am most excited about. In this one I would like to give you a glimpse of how it works with a design that I see in many organizations: a multi-region setup, with Network Virtual Appliances acting … Continue reading Route Server Multi-Region Design
Amongst the many Ignite announcements this year, my favourite is the new Azure Route Server, in public preview now, since it has the potential to dramatically change how networks are built in Azure. If you are thinking “here he comes with his BGP thing again”… You are right! Let me explain: In public cloud there … Continue reading Azure Route Server: super powers for your Network Virtual Appliance
You might have been confronted with the challenge that certificate management sometimes presents. Your website should be secure, but digital certificates can be expensive. Not only in terms of money, but they bring along a certain complexity too. Luckily there are two technologies that can help you to overcome both challenges: Let’s Encrypt is a non-profit … Continue reading Using Azure Container Instances to create Let’s Encrypt Certificates
Some times User-Defined Routes can cause traffic issues in Azure due to asymmetries, learn how to identify those problems and fix them!
This article was posted in 2020. In the meantime, Azure Virtual WAN Routing Intent has been released with the functionality of securing hub-to-hub traffic. See the official documentation page here: https://learn.microsoft.com/azure/virtual-wan/how-to-routing-policies. You probably know Azure Virtual WAN, an Azure technology that abstracts hybrid networking by providing Microsoft-managed Virtual Hubs that use the Microsoft backbone to … Continue reading Virtual WAN: secure hubs in multiple regions
Hey there! I receive pretty frequently questions around what storaget to use in Azure Red Hat Openshift (ARO), hence I decided to write this post. Using storage in Kubernetes in general and Openshift in particular has many nuances. I/O bottlenecks can quickly become an issue impacting the cluster integrity, the application performance, or both. This … Continue reading Azure Red Hat Openshift Storage Concepts
I have been wanting for some time to be able to whiteboard in Teams calls without losing my video image, kind of something like this: I finally made it work using Open Broadcaster Software, a tool that can combine videos from different sources into one. Disclaimer: I am a complete noob with video, so if … Continue reading Transparent Whiteboarding in Teams with OBS
There are many nuances when choosing a node size in Azure Kubernetes Services, and not all of them are obvious. I decided to write a short post to discuss the most important ones. At the end of the day, this is going to be a trade-off: some factors are going to drive you towards larger … Continue reading Which VM size should I choose as AKS node?
Azure Application Service has a feature often referred as “Easy Auth” (see Authentication and authorization in Azure App Service and Azure Functions), which essentially consists of enabling user authentication for an application that does not support it. Many users love this feature, since it allows enjoying enterprise-grade authentication without writing a single line of code, … Continue reading Easy Auth on AKS with Ambassador
Cloudtrooper 