When discussing Azure networking, a question that frequently comes up is how to connect different Azure regions. More specifically, this question typically boils down to how to connect VNETs that are in different regions. There are three options to achieve this connection, which we’ll discuss in this post: Global VNET peering VNET-to-VNET connection Expressroute Although […]
Category: Networking
Changing from Let’s Encrypt to an App Service Managed Certificate
A couple of months ago, I moved my blog from wordpress.com to my own hosting on Azure. Afterwards, I setup SSL using a Let’s Encrypt free certificate. This process is using an opensource plugin into App Service to communicate to Let’s Encrypt. Recently, Microsoft announced free certificates for App Service custom domains. These certs are […]
Azure Kubernetes Private Clusters
Just a couple days ago, there was an announcement that Azure now supports (in public preview) AKS private clusters. This means that you can now create a cluster, where the API-server is hosted on a private IP. By default, an AKS cluster is created using a public IP for the kubernetes API server. On that […]
Using Azure Policy to deny public IPs on specific VNETs
Azure Policy is a powerful tool in your Azure toolbox. It allows you to enforce specific governance principals you want to see implemented in your environment. Some key examples of what Azure Policy allows you to do is: Automatically tag resources, Enforce specific regions, Enforce VM size … I recently ran into a customer scenario, […]
Using a API Management in front of an Azure Kubernetes cluster
I have had the idea about writing about container and kubernetes networking for a while. Every time I dove in the research, I started looking at the networking aspects from a bottom-up lens. This means, starting at the Docker layer, moving into IPtables and into Kubernetes networking. What I learned about customer conversations about Kubernetes […]