Virtual WAN: secure hubs in multiple regions

You probably know Azure Virtual WAN, an Azure technology that abstracts hybrid networking by providing Microsoft-managed Virtual Hubs that use the Microsoft backbone to talk to each other. And you might know as well that those hubs can become Secured Virtual Hubs, including firewalling functionality powered by Azure Firewall. Virtual WAN secure hubs are great, … Continue reading Virtual WAN: secure hubs in multiple regions

Azure RedHat Openshift and Hybrid Networking

Hey there! As you might have read, some time ago I wrote a pretty detailed “A day in the life of a packet” post series on how networking works in detail in Azure RedHat Openshift (ARO). Some of the feedback around those blog posts was that they are far too technical, and hard to read … Continue reading Azure RedHat Openshift and Hybrid Networking

A day in the life of a Packet in Azure Redhat Openshift (part 4)

In this part of this blog series we will have a look at how Azure Redhat Openshift works with Azure Private Link, as well as how DNS resolutions works including DNS forwarding to resolve on-premises private zones. You can find the other parts of the blog series here: Part 1: Intro and SDN Plugin Part … Continue reading A day in the life of a Packet in Azure Redhat Openshift (part 4)

A day in the life of a packet in Azure Redhat Openshift (part 3)

This is part 3 of a blog series around networking in Azure Redhat Openshift, and we will see how pods talk to each other inside of the cluster and to other systems in the virtual Network or on-premises. Other posts in the series: Part 1: Intro and SDN Plugin Part 2: Internet and Intra-cluster Communication … Continue reading A day in the life of a packet in Azure Redhat Openshift (part 3)

A day in the life of a packet in Azure Redhat Openshift (part 2)

In this part 2 of my blog series around ARO networking we will have a look and how inbound and outbound Internet connectivity works, as well as connectivity between different pods in the cluster. Other posts in the series: Part 1: Intro and SDN Plugin Part 2: Internet and Intra-cluster Communication Part 3: Inter-Project and … Continue reading A day in the life of a packet in Azure Redhat Openshift (part 2)

A day in the life of a packet in Azure Redhat Openshift (part 1)

I have been wanting to look into this for a while now, and I finally found a good excuse to do it. You might have read my series of posts on AKS networking, the goal of this is doing something similar with Azure Redhat Openshift (ARO). This is part 1 of a blog series around … Continue reading A day in the life of a packet in Azure Redhat Openshift (part 1)

Filtering traffic to Private Endpoints with Azure Firewall

If you are reading this, you probably already know what Azure Private Link is: a representation of a service such as Azure Storage, Azure SQL Database, Azure Application Service, or even some application running in a different Virtual Network, in your own Virtual Network with a private IP address of your own. This is a … Continue reading Filtering traffic to Private Endpoints with Azure Firewall

Sending Log Analytics tables and charts per email with a Logic App

You probably know Azure Log Analytics: a log repository and analysis system in Azure Monitor able to process millions of logs with queries that produce results in multiple formats, such as tables or charts. Before I start, a brief note about nomenclature: Azure Log Analytics used to be an Azure service of its own, optionally … Continue reading Sending Log Analytics tables and charts per email with a Logic App

A Day in the Life of a Packet in AKS (part 4): NSGs

Hey there, welcome to yet another instance of the wonderful networking world of Kubernetes. Today I will explore some new cool stuff that recently came to Azure Kubernetes Service (AKS), plus one thing I did not have in previous blogs. First things first, this is a blog series, you can find previous installments here: Part … Continue reading A Day in the Life of a Packet in AKS (part 4): NSGs

A Day in the Life of a Packet in AKS (part 5): Virtual Node

This post is a continuation from Part 4: NSGs. Other posts in this series: Part 1: deep dive in AKS with Azure CNI in your own vnet Part 2: deep dive in AKS with kubenet in your own vnet, and ingress controllers Part 3: outbound connectivity from AKS pods Part 4: NSGs with Azure CNI … Continue reading A Day in the Life of a Packet in AKS (part 5): Virtual Node