{"id":3269,"date":"2022-08-12T12:56:35","date_gmt":"2022-08-12T17:56:35","guid":{"rendered":"https:\/\/microsoftgeek.com\/?p=3269"},"modified":"2022-08-12T13:08:45","modified_gmt":"2022-08-12T18:08:45","slug":"connectivity-and-network-services-on-azure","status":"publish","type":"post","link":"https:\/\/microsoftgeek.com\/?p=3269","title":{"rendered":"Connectivity and Network Services on Azure"},"content":{"rendered":"\n<p><\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/architecture-cloud.fr\/wp-content\/uploads\/2020\/10\/Azure-Bastion-architecture-from-MS-docs.png\" alt=\"\"\/><\/figure>\n\n\n\n<p>In this article, we will talk about the different network services offered by Azure to manage our resources and connect to them from a remote site (On-Promise) or via the Internet.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Azure VNet (Virtual Network)<\/h3>\n\n\n\n<p>VNet is the fundamental block of our virtual private network on Azure. It will allow us to securely communicate our Azure resources (VM..etc) with each other, reach them from the internet but also from our On-Premise sites.<\/p>\n\n\n\n<p>In our example, the creation of the virtual network is done by the Azure administration console during creation, you must specify a custom private IP address space using public and private addresses.&nbsp;Your resources automatically retrieve a private IP on the network you chose when it was created.&nbsp;For example, if you deploy a VM in a VNet with an address space, 10.0.0.0\/16, the VM will be assigned a private IP like 10.0.0.4.<\/p>\n\n\n\n<p>We will see together the different steps for creating a VNet:<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/architecture-cloud.fr\/wp-content\/uploads\/2020\/10\/image-12.png\" alt=\"\" class=\"wp-image-1043\"\/><figcaption><strong>Creating a VNet from the Azure Console<\/strong><\/figcaption><\/figure>\n\n\n\n<p>A VNet has a number of limitations, such as the number of Private IP addresses available.&nbsp;Indeed, it is not possible to have &#8220;only&#8221; 65535 addresses, that is to say a \/16 in CIDR notation, in a VNet.&nbsp;Azure offers the 10.0.0.0\/16 network by default, which can go up to 65535 IPs with the 10.0.0.0\/24 subnet.&nbsp;Pay attention to the subnet in Azure which consumes not 2 (Network address &amp; broadcast address) but 5 IPs.<\/p>\n\n\n\n<p>You have the option to change your virtual network and your subnets as well, be careful not to overlap the networks with each other.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/architecture-cloud.fr\/wp-content\/uploads\/2020\/10\/image-13.png\" alt=\"\" class=\"wp-image-1044\"\/><figcaption><strong>VNet IP Setup<\/strong><\/figcaption><\/figure>\n\n\n\n<p>In the security part, you will have to choose if you want to have a Windows server called Bastion.&nbsp;This server will allow you to strengthen the security on your&nbsp;&nbsp;<strong>Azure infrastructure because<\/strong>&nbsp;&nbsp;it is the only one to have a&nbsp; public&nbsp;<strong><em>IP<\/em><\/strong>&nbsp;&nbsp;and from the latter&nbsp;&nbsp;<strong>you will be able to<\/strong>&nbsp;&nbsp;reach your resources in&nbsp;&nbsp;<strong><em>SSH \/ RDP.&nbsp;<\/em><\/strong><strong>DDos<\/strong>&nbsp;&nbsp;protection&nbsp;&nbsp;&nbsp;against denial of service attacks and enabling the&nbsp;&nbsp;&nbsp;Azure&nbsp;<strong><em>firewall option for your network.<\/em><\/strong><\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/architecture-cloud.fr\/wp-content\/uploads\/2020\/10\/image-14.png\" alt=\"\" class=\"wp-image-1045\"\/><figcaption><strong>VNet security configuration<\/strong><\/figcaption><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><strong>Conclusion<\/strong><\/h3>\n\n\n\n<p>In this article, we explored the creation of a VNet and the options\/limitations of this Azure service which is fundamental before creating a resource on Azure.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>In this article, we will talk about the different network services offered by Azure to manage our resources and connect to them from a remote site (On-Promise) or via the Internet. Azure VNet (Virtual Network) VNet is the fundamental block of our virtual private network on Azure. It will allow us to securely communicate our [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[69,35,1],"tags":[],"class_list":["post-3269","post","type-post","status-publish","format-standard","hentry","category-azure","category-cloud-computing","category-networking-stuff"],"_links":{"self":[{"href":"https:\/\/microsoftgeek.com\/index.php?rest_route=\/wp\/v2\/posts\/3269","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/microsoftgeek.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/microsoftgeek.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/microsoftgeek.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/microsoftgeek.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=3269"}],"version-history":[{"count":2,"href":"https:\/\/microsoftgeek.com\/index.php?rest_route=\/wp\/v2\/posts\/3269\/revisions"}],"predecessor-version":[{"id":3271,"href":"https:\/\/microsoftgeek.com\/index.php?rest_route=\/wp\/v2\/posts\/3269\/revisions\/3271"}],"wp:attachment":[{"href":"https:\/\/microsoftgeek.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=3269"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/microsoftgeek.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=3269"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/microsoftgeek.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=3269"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}