Azure Networking: Understand key concepts and design secure Cloud networking architectures
Jose Moreno
This audiobook is narrated by a digital voice.
DESCRIPTION
In the ever-evolving landscape of Cloud technology, every project demands a robust, high-performance, scalable and secure foundation. Whether you're deploying traditional Virtual Machines or pioneering modern Artificial Intelligence solutions, a well designed Azure Networking infrastructure is critical for success.
This book simplifies complex concepts, empowering you to architect reliable and efficient network solutions within the Azure cloud. It takes you from the fundamentals of Azure networking, including VNets, NSGs, and hub-and-spoke models, to advanced topics like Virtual WAN, ExpressRoute, and SD-WAN integration using Route Server. It meticulously covers essential design considerations, security best practices with Azure Firewall, service tags, AVNM security rules and ZTNA, and explores multi-cloud strategies. You will learn how to implement effective DNS with Private Resolver and PaaS networking using Private Link, and master application delivery with load balancing and Front Door. Furthermore, this book equips you with the knowledge to utilize Azure's monitoring tools like Network Watcher and traffic analytics, and prepares you to manage and troubleshoot complex networks effectively.
By the end of this book, you will possess the practical skills and in-depth knowledge to confidently design, deploy, and manage Azure networks, positioning yourself as a proficient Azure networking professional.
WHAT YOU WILL LEARN
● Connect your on-site networks to Azure using ExpressRoute and VPN.
● Set up secure Azure networks with firewalls and network security rules.
● Build faster, reliable cloud networks with SD-WAN and Virtual WAN.
● Make your apps work better with Azure's application delivery tools.
● Discover the benefits and caveats of different topologies.
● Keep your cloud data safe and secure your Azure footprint with network security.
● Monitor your Azure network to spot and fix problems quickly.
● Implementing Azure VNets and NSGs for advanced cloud network architecture and security.
WHO THIS BOOK IS FOR
This book is for network architects and engineers familiar with on-premises networking products and protocols. It also benefits cloud architects who understand Azure constructs and want to specialize in its networking capabilities.
Duration - 13h 27m.
Author - Jose Moreno.
Narrator - Digital Voice Madison G.
Published Date - Thursday, 02 January 2025.
Copyright - © 2025 BPB Publications ©.
Location:
United States
Description:
This audiobook is narrated by a digital voice. DESCRIPTION In the ever-evolving landscape of Cloud technology, every project demands a robust, high-performance, scalable and secure foundation. Whether you're deploying traditional Virtual Machines or pioneering modern Artificial Intelligence solutions, a well designed Azure Networking infrastructure is critical for success. This book simplifies complex concepts, empowering you to architect reliable and efficient network solutions within the Azure cloud. It takes you from the fundamentals of Azure networking, including VNets, NSGs, and hub-and-spoke models, to advanced topics like Virtual WAN, ExpressRoute, and SD-WAN integration using Route Server. It meticulously covers essential design considerations, security best practices with Azure Firewall, service tags, AVNM security rules and ZTNA, and explores multi-cloud strategies. You will learn how to implement effective DNS with Private Resolver and PaaS networking using Private Link, and master application delivery with load balancing and Front Door. Furthermore, this book equips you with the knowledge to utilize Azure's monitoring tools like Network Watcher and traffic analytics, and prepares you to manage and troubleshoot complex networks effectively. By the end of this book, you will possess the practical skills and in-depth knowledge to confidently design, deploy, and manage Azure networks, positioning yourself as a proficient Azure networking professional. WHAT YOU WILL LEARN ● Connect your on-site networks to Azure using ExpressRoute and VPN. ● Set up secure Azure networks with firewalls and network security rules. ● Build faster, reliable cloud networks with SD-WAN and Virtual WAN. ● Make your apps work better with Azure's application delivery tools. ● Discover the benefits and caveats of different topologies. ● Keep your cloud data safe and secure your Azure footprint with network security. ● Monitor your Azure network to spot and fix problems quickly. ● Implementing Azure VNets and NSGs for advanced cloud network architecture and security. WHO THIS BOOK IS FOR This book is for network architects and engineers familiar with on-premises networking products and protocols. It also benefits cloud architects who understand Azure constructs and want to specialize in its networking capabilities. Duration - 13h 27m. Author - Jose Moreno. Narrator - Digital Voice Madison G. Published Date - Thursday, 02 January 2025. Copyright - © 2025 BPB Publications ©.
Language:
English
Title Page
Duración:00:00:16
About the Authors
Duración:00:01:02
About the Reviewers
Duración:00:01:22
Acknowledgements
Duración:00:01:05
Preface
Duración:00:05:58
Table of Contents
Duración:00:15:52
1. Introduction
Duración:00:00:03
Introduction
Duración:00:02:39
Structure
Duración:00:00:13
Objectives
Duración:00:00:24
Networking is fundamental
Duración:00:01:19
History
Duración:00:06:08
Cloud needs networking professionals
Duración:00:03:01
Infrastructure as a service vs. platform as a service
Duración:00:03:06
Automation
Duración:00:03:05
Azure networking certification: The AZ-700 exam
Duración:00:03:01
Conclusion
Duración:00:00:50
2. Azure Networking Fundamentals
Duración:00:00:04
Microsoft Azure
Duración:00:00:24
Azure administrative access
Duración:00:01:00
Azure management interfaces
Duración:00:04:10
Is Azure limitless?
Duración:00:01:12
Azure virtual networks and subnets
Duración:00:00:33
IaaS vs. PaaS
Duración:00:02:19
Azure virtual networks
Duración:00:03:22
Protocols supported on virtual networks
Duración:00:02:19
Azure regions and availability zones
Duración:00:04:37
Latency
Duración:00:00:49
IP addresses allocation
Duración:00:02:02
NICs and virtual machines
Duración:00:02:00
Multiple IP addresses
Duración:00:00:56
DNS in Azure virtual networks
Duración:00:05:14
Routing in Azure
Duración:00:00:18
Packet forwarding
Duración:00:03:35
Routing
Duración:00:03:24
Default gateway
Duración:00:00:52
Routing with system and user-defined routes
Duración:00:02:22
Transit subnets in Azure
Duración:00:01:49
Internet connectivity
Duración:00:00:15
Public IP addresses and public load balancers
Duración:00:05:35
Port exhaustion
Duración:00:03:14
Management connectivity to virtual machines
Duración:00:02:57
Load balancing
Duración:00:00:22
Load balancing of Network Virtual Appliances
Duración:00:02:56
Traffic symmetry provided by Azure Load Balancer
Duración:00:02:41
NVA design with public and internal load balancers
Duración:00:01:53
Azure Load Balancer architecture
Duración:00:02:29
Multiple virtual networks
Duración:00:00:18
Azure resource hierarchy
Duración:00:03:07
Peering between virtual networks
Duración:00:02:51
Virtual network gateways
Duración:00:00:32
Routing to on-premises networks
Duración:00:04:17
Traffic filtering
Duración:00:00:23
Network Security Groups
Duración:00:03:48
Service tag troubleshooting
Duración:00:03:37
Points to remember
Duración:00:00:48
Key terms
Duración:00:03:27
3. Before the Whiteboard, Requirements
Duración:00:00:04
Requirement types
Duración:00:04:41
Availability
Duración:00:00:52
Business goal alignment
Duración:00:01:42
Azure Service Level Agreements
Duración:00:03:33
Azure availability zones
Duración:00:00:50
Azure regions
Duración:00:01:04
Multi-cloud
Duración:00:01:10
Hybrid connectivity
Duración:00:01:59
Network Virtual Appliances
Duración:00:01:06
External multi-region load balancing
Duración:00:00:57
Internal multi-region load balancing
Duración:00:00:55
Security
Duración:00:01:55
Security frameworks
Duración:00:01:08
Remote user access
Duración:00:01:00
Zero Trust Network Access
Duración:00:01:33
Internet inbound
Duración:00:03:37
Internet outbound
Duración:00:02:12
Encryption in transit
Duración:00:03:35
Data residency and geography
Duración:00:00:31
Performance and scalability
Duración:00:01:25
Bandwidth
Duración:00:05:01
VPN users
Duración:00:00:38
Private IP addresses
Duración:00:02:04
Virtual machines
Duración:00:01:03
VDI users
Duración:00:00:57
Management
Duración:00:01:57
Configuration deployment
Duración:00:01:02
Documentation and state
Duración:00:02:55
Role-based access control
Duración:00:03:28
Testing
Duración:00:02:10
Visibility
Duración:00:02:14
Repeatability
Duración:00:01:07
Simplicity
Duración:00:02:39
Timelines
Duración:00:01:27
Recoverability
Duración:00:01:08
Disaster recovery
Duración:00:00:56
Recovery Time Objective
Duración:00:00:49
Interoperability
Duración:00:00:46
Third-party vendors
Duración:00:02:33
MPLS WAN
Duración:00:00:54
Cost
Duración:00:01:07
Monitoring
Duración:00:01:12
Cross-charging and allocation
Duración:00:01:22
Licensing
Duración:00:00:45
Pricing models
Duración:00:02:07
Pricing considerations
Duración:00:01:23
4. Network Topology
Duración:00:00:04
Self-managed hub-and-spoke topologies
Duración:00:00:34
Single virtual network
Duración:00:04:15
One virtual network per region
Duración:00:01:22
Single hub-and-spoke pod
Duración:00:04:36
Multiple hub-and-spoke pods
Duración:00:02:01
Tiered hub-and-spoke design
Duración:00:06:26
Direct spoke connectivity
Duración:00:01:42
Virtual WAN
Duración:00:03:26
Routing Intent
Duración:00:01:17
Virtual WAN route tables
Duración:00:04:55
Effective routes of a virtual hub
Duración:00:01:34
Tiered VNet model with Virtual WAN
Duración:00:02:11
When to choose Virtual WAN
Duración:00:05:17
Azure Virtual Network Manager
Duración:00:01:19
AVNM topology management
Duración:00:02:22
AVNM UDR management
Duración:00:01:33
Advanced designs
Duración:00:00:17
Custom hub-and-spoke
Duración:00:01:26
Disconnected virtual networks
Duración:00:03:20
5. Connectivity to On-premises
Duración:00:00:05
Connecting from Azure to other networks
Duración:00:01:33
IPsec virtual private networks
Duración:00:01:26
Azure VPN gateways in self-managed hub and spoke
Duración:00:01:59
Azure VPN gateways static and dynamic routing
Duración:00:05:28
Policy-based IPsec VPNs
Duración:00:03:00
Network Address Translation and site-to-site
Duración:00:01:29
Azure VPN Gateways in Virtual WAN
Duración:00:00:51
Troubleshooting IPsec connectivity
Duración:00:02:02
Point-to-site virtual private networks
Duración:00:11:09
ExpressRoute
Duración:00:07:54
Choosing the right ExpressRoute peering location
Duración:00:01:34
ExpressRoute peering locations and Azure regions
Duración:00:02:53
ExpressRoute peering location redundancy
Duración:00:02:49
ExpressRoute redundancy with bow-tie design
Duración:00:02:32
ExpressRoute redundancy with square design
Duración:00:01:46
Site-to-site VPN as failover of ExpressRoute
Duración:00:02:02
ExpressRoute and VPN coexistence
Duración:00:03:45
ExpressRoute Global Reach and transitivity via Azure
Duración:00:04:50
Azure VMware Solution and bare-metal offerings
Duración:00:02:14
Azure as Internet breakout for Azure VMware Solution
Duración:00:02:13
Multi-region connectivity to Azure VMware Solution
Duración:00:01:54
Dedicated ExpressRoute gateways
Duración:00:01:59
6. Software-defined Wide Area Networking in Azure
Duración:00:00:05
Software-defined wide area networking
Duración:00:00:25
Before SD-WAN
Duración:00:01:50
SD-WAN basics
Duración:00:00:48
Software-optimized overlay
Duración:00:01:01
Application visibility
Duración:00:01:47
Path selection
Duración:00:01:18
Single pane of glass
Duración:00:02:11
Zero-touch provisioning
Duración:00:01:00
SD-WAN and cloud
Duración:00:03:16
SD-WAN considerations
Duración:00:04:23
SD-WAN integration in Azure
Duración:00:00:41
Hub-and-spoke
Duración:00:00:27
Static routes
Duración:00:07:26
BGP over IPsec
Duración:00:04:54
Azure Route Server
Duración:00:04:29
IPsec API integration
Duración:00:02:53
BGP endpoint
Duración:00:02:35
NVA-in-hub
Duración:00:02:51
Physical co-location
Duración:00:04:02
Global SD-WAN in Azure
Duración:00:04:19
Intra-Azure SD-WAN
Duración:00:04:33
7. Multicloud Networking
Duración:00:00:04
Multicloud
Duración:00:00:24
Definition
Duración:00:01:47
Intentional drivers for multicloud adoption
Duración:00:00:53
Regulation
Duración:00:00:55
Business continuity and disaster recovery
Duración:00:01:22
Geographic
Duración:00:01:03
Technical features
Duración:00:00:23
Commercial
Duración:00:00:39
Organic drivers for multicloud adoptions
Duración:00:00:23
Shadow IT
Duración:00:01:29
Mergers and acquisitions
Duración:00:01:28
Multicloud networking
Duración:00:02:05
Public underlay
Duración:00:07:14
Private underlay
Duración:00:03:18
Customer edge
Duración:00:03:43
Partner edge
Duración:00:01:16
Cloud service provider edge
Duración:00:02:47
Overlay
Duración:00:01:27
IPsec VPN
Duración:00:04:01
SD-WAN
Duración:00:01:01
Multicloud-specific software
Duración:00:04:00
8. Security
Duración:00:00:03
Multi-tier security
Duración:00:02:22
Firewalls
Duración:00:01:18
Azure Firewall in hub and spoke designs
Duración:00:06:50
Workloads in the hub VNet
Duración:00:03:12
Azure Firewall rule types and DNS proxy
Duración:00:03:38
Firewall Network Virtual Appliances
Duración:00:05:11
NVA high availability with BGP
Duración:00:03:02
Firewall NVAs and Gateway Load Balancer
Duración:00:01:50