Thoughts from the clouds
Welcome to the fourth post in the Private Link Reality Bites series! Before we begin, let me recap the existing episodes of the series: After the last post on Network Address Translation (NAT) for private endpoints, in this one we are going to dive into how to do the same with Azure Firewall proxy technology: … Continue reading Private Link reality bites: Azure Firewall app rules
Welcome to the third post in the Private Link Reality Bites series! Before we begin, let me recap the existing episodes of the series: Big shoutout here to my esteemed colleague and oracle for Azure Networking Daniel Mauser. If you don’t know his GitHub site, make sure you check it out! Thanks as well to … Continue reading Private Link reality bites: what’s my source IP?
Welcome to this new series of blog posts in which I will be explaining some not-so-well-known facts about Azure Private Link and some associated technologies! This idea is born from the fact that I have been helping some colleagues and customers lately with some questions around Private Link, and that has made me realize that … Continue reading Private Link reality bites – Private endpoints are an illusion
The square design in ExpressRoute is not a recommended practice, but it can mean savings in ExpressRoute costs of up to 90%.
First of all, my apologies for the radio silence, there have been some private projects going on during the Summer months that have kept me away from blogging. With that out of the way: what the heck is subnet peering? You probably know VNet peering, but is “subnet peering” now a thing? Well, not yet, … Continue reading Azure Subnet Peering
I have recently expanded my SDWAN in hub-and-spoke networks design guide to include SDWAN-to-firewall routing. Initially I didn’t have this point, but recent conversations have made me realize that not everybody understand this. The main difficulty in this topic is related to the fact that you cannot inspect the effective routes of your Virtual Network … Continue reading Do not let ExpressRoute, VPN and SDWAN traffic bypass your firewall
Hey there! As you might have read, some time ago I wrote a pretty detailed “A day in the life of a packet” post series on how networking works in detail in Azure RedHat Openshift (ARO). Some of the feedback around those blog posts was that they are far too technical, and hard to read … Continue reading Azure RedHat Openshift and Hybrid Networking
As you are probably aware of, DNS is one of the services offered in Azure (you can read more about it here, pricing here). And as you probably know as well, you can programatically manage Azure resources over many different ways. During the weekend it struck me that I could migrate the dynamic DNS solution … Continue reading Dynamic DNS with Azure DNS (and a bash script)
Cloudtrooper 