Azure Networking: Understand key concepts and design secure Cloud networking architectures
Jose Moreno
This audiobook is narrated by a digital voice.
DESCRIPTION
In the ever-evolving landscape of Cloud technology, every project demands a robust, high-performance, scalable and secure foundation. Whether you're deploying traditional Virtual Machines or pioneering modern Artificial Intelligence solutions, a well designed Azure Networking infrastructure is critical for success.
This book simplifies complex concepts, empowering you to architect reliable and efficient network solutions within the Azure cloud. It takes you from the fundamentals of Azure networking, including VNets, NSGs, and hub-and-spoke models, to advanced topics like Virtual WAN, ExpressRoute, and SD-WAN integration using Route Server. It meticulously covers essential design considerations, security best practices with Azure Firewall, service tags, AVNM security rules and ZTNA, and explores multi-cloud strategies. You will learn how to implement effective DNS with Private Resolver and PaaS networking using Private Link, and master application delivery with load balancing and Front Door. Furthermore, this book equips you with the knowledge to utilize Azure's monitoring tools like Network Watcher and traffic analytics, and prepares you to manage and troubleshoot complex networks effectively.
By the end of this book, you will possess the practical skills and in-depth knowledge to confidently design, deploy, and manage Azure networks, positioning yourself as a proficient Azure networking professional.
WHAT YOU WILL LEARN
● Connect your on-site networks to Azure using ExpressRoute and VPN.
● Set up secure Azure networks with firewalls and network security rules.
● Build faster, reliable cloud networks with SD-WAN and Virtual WAN.
● Make your apps work better with Azure's application delivery tools.
● Discover the benefits and caveats of different topologies.
● Keep your cloud data safe and secure your Azure footprint with network security.
● Monitor your Azure network to spot and fix problems quickly.
● Implementing Azure VNets and NSGs for advanced cloud network architecture and security.
WHO THIS BOOK IS FOR
This book is for network architects and engineers familiar with on-premises networking products and protocols. It also benefits cloud architects who understand Azure constructs and want to specialize in its networking capabilities.
Duration - 13h 27m.
Author - Jose Moreno.
Narrator - Digital Voice Madison G.
Published Date - Thursday, 02 January 2025.
Copyright - © 2025 BPB Publications ©.
Location:
United States
Description:
This audiobook is narrated by a digital voice. DESCRIPTION In the ever-evolving landscape of Cloud technology, every project demands a robust, high-performance, scalable and secure foundation. Whether you're deploying traditional Virtual Machines or pioneering modern Artificial Intelligence solutions, a well designed Azure Networking infrastructure is critical for success. This book simplifies complex concepts, empowering you to architect reliable and efficient network solutions within the Azure cloud. It takes you from the fundamentals of Azure networking, including VNets, NSGs, and hub-and-spoke models, to advanced topics like Virtual WAN, ExpressRoute, and SD-WAN integration using Route Server. It meticulously covers essential design considerations, security best practices with Azure Firewall, service tags, AVNM security rules and ZTNA, and explores multi-cloud strategies. You will learn how to implement effective DNS with Private Resolver and PaaS networking using Private Link, and master application delivery with load balancing and Front Door. Furthermore, this book equips you with the knowledge to utilize Azure's monitoring tools like Network Watcher and traffic analytics, and prepares you to manage and troubleshoot complex networks effectively. By the end of this book, you will possess the practical skills and in-depth knowledge to confidently design, deploy, and manage Azure networks, positioning yourself as a proficient Azure networking professional. WHAT YOU WILL LEARN ● Connect your on-site networks to Azure using ExpressRoute and VPN. ● Set up secure Azure networks with firewalls and network security rules. ● Build faster, reliable cloud networks with SD-WAN and Virtual WAN. ● Make your apps work better with Azure's application delivery tools. ● Discover the benefits and caveats of different topologies. ● Keep your cloud data safe and secure your Azure footprint with network security. ● Monitor your Azure network to spot and fix problems quickly. ● Implementing Azure VNets and NSGs for advanced cloud network architecture and security. WHO THIS BOOK IS FOR This book is for network architects and engineers familiar with on-premises networking products and protocols. It also benefits cloud architects who understand Azure constructs and want to specialize in its networking capabilities. Duration - 13h 27m. Author - Jose Moreno. Narrator - Digital Voice Madison G. Published Date - Thursday, 02 January 2025. Copyright - © 2025 BPB Publications ©.
Language:
English
Title Page
Duration:00:00:16
About the Authors
Duration:00:01:02
About the Reviewers
Duration:00:01:22
Acknowledgements
Duration:00:01:05
Preface
Duration:00:05:58
Table of Contents
Duration:00:15:52
1. Introduction
Duration:00:00:03
Introduction
Duration:00:02:39
Structure
Duration:00:00:13
Objectives
Duration:00:00:24
Networking is fundamental
Duration:00:01:19
History
Duration:00:06:08
Cloud needs networking professionals
Duration:00:03:01
Infrastructure as a service vs. platform as a service
Duration:00:03:06
Automation
Duration:00:03:05
Azure networking certification: The AZ-700 exam
Duration:00:03:01
Conclusion
Duration:00:00:50
2. Azure Networking Fundamentals
Duration:00:00:04
Microsoft Azure
Duration:00:00:24
Azure administrative access
Duration:00:01:00
Azure management interfaces
Duration:00:04:10
Is Azure limitless?
Duration:00:01:12
Azure virtual networks and subnets
Duration:00:00:33
IaaS vs. PaaS
Duration:00:02:19
Azure virtual networks
Duration:00:03:22
Protocols supported on virtual networks
Duration:00:02:19
Azure regions and availability zones
Duration:00:04:37
Latency
Duration:00:00:49
IP addresses allocation
Duration:00:02:02
NICs and virtual machines
Duration:00:02:00
Multiple IP addresses
Duration:00:00:56
DNS in Azure virtual networks
Duration:00:05:14
Routing in Azure
Duration:00:00:18
Packet forwarding
Duration:00:03:35
Routing
Duration:00:03:24
Default gateway
Duration:00:00:52
Routing with system and user-defined routes
Duration:00:02:22
Transit subnets in Azure
Duration:00:01:49
Internet connectivity
Duration:00:00:15
Public IP addresses and public load balancers
Duration:00:05:35
Port exhaustion
Duration:00:03:14
Management connectivity to virtual machines
Duration:00:02:57
Load balancing
Duration:00:00:22
Load balancing of Network Virtual Appliances
Duration:00:02:56
Traffic symmetry provided by Azure Load Balancer
Duration:00:02:41
NVA design with public and internal load balancers
Duration:00:01:53
Azure Load Balancer architecture
Duration:00:02:29
Multiple virtual networks
Duration:00:00:18
Azure resource hierarchy
Duration:00:03:07
Peering between virtual networks
Duration:00:02:51
Virtual network gateways
Duration:00:00:32
Routing to on-premises networks
Duration:00:04:17
Traffic filtering
Duration:00:00:23
Network Security Groups
Duration:00:03:48
Service tag troubleshooting
Duration:00:03:37
Points to remember
Duration:00:00:48
Key terms
Duration:00:03:27
3. Before the Whiteboard, Requirements
Duration:00:00:04
Requirement types
Duration:00:04:41
Availability
Duration:00:00:52
Business goal alignment
Duration:00:01:42
Azure Service Level Agreements
Duration:00:03:33
Azure availability zones
Duration:00:00:50
Azure regions
Duration:00:01:04
Multi-cloud
Duration:00:01:10
Hybrid connectivity
Duration:00:01:59
Network Virtual Appliances
Duration:00:01:06
External multi-region load balancing
Duration:00:00:57
Internal multi-region load balancing
Duration:00:00:55
Security
Duration:00:01:55
Security frameworks
Duration:00:01:08
Remote user access
Duration:00:01:00
Zero Trust Network Access
Duration:00:01:33
Internet inbound
Duration:00:03:37
Internet outbound
Duration:00:02:12
Encryption in transit
Duration:00:03:35
Data residency and geography
Duration:00:00:31
Performance and scalability
Duration:00:01:25
Bandwidth
Duration:00:05:01
VPN users
Duration:00:00:38
Private IP addresses
Duration:00:02:04
Virtual machines
Duration:00:01:03
VDI users
Duration:00:00:57
Management
Duration:00:01:57
Configuration deployment
Duration:00:01:02
Documentation and state
Duration:00:02:55
Role-based access control
Duration:00:03:28
Testing
Duration:00:02:10
Visibility
Duration:00:02:14
Repeatability
Duration:00:01:07
Simplicity
Duration:00:02:39
Timelines
Duration:00:01:27
Recoverability
Duration:00:01:08
Disaster recovery
Duration:00:00:56
Recovery Time Objective
Duration:00:00:49
Interoperability
Duration:00:00:46
Third-party vendors
Duration:00:02:33
MPLS WAN
Duration:00:00:54
Cost
Duration:00:01:07
Monitoring
Duration:00:01:12
Cross-charging and allocation
Duration:00:01:22
Licensing
Duration:00:00:45
Pricing models
Duration:00:02:07
Pricing considerations
Duration:00:01:23
4. Network Topology
Duration:00:00:04
Self-managed hub-and-spoke topologies
Duration:00:00:34
Single virtual network
Duration:00:04:15
One virtual network per region
Duration:00:01:22
Single hub-and-spoke pod
Duration:00:04:36
Multiple hub-and-spoke pods
Duration:00:02:01
Tiered hub-and-spoke design
Duration:00:06:26
Direct spoke connectivity
Duration:00:01:42
Virtual WAN
Duration:00:03:26
Routing Intent
Duration:00:01:17
Virtual WAN route tables
Duration:00:04:55
Effective routes of a virtual hub
Duration:00:01:34
Tiered VNet model with Virtual WAN
Duration:00:02:11
When to choose Virtual WAN
Duration:00:05:17
Azure Virtual Network Manager
Duration:00:01:19
AVNM topology management
Duration:00:02:22
AVNM UDR management
Duration:00:01:33
Advanced designs
Duration:00:00:17
Custom hub-and-spoke
Duration:00:01:26
Disconnected virtual networks
Duration:00:03:20
5. Connectivity to On-premises
Duration:00:00:05
Connecting from Azure to other networks
Duration:00:01:33
IPsec virtual private networks
Duration:00:01:26
Azure VPN gateways in self-managed hub and spoke
Duration:00:01:59
Azure VPN gateways static and dynamic routing
Duration:00:05:28
Policy-based IPsec VPNs
Duration:00:03:00
Network Address Translation and site-to-site
Duration:00:01:29
Azure VPN Gateways in Virtual WAN
Duration:00:00:51
Troubleshooting IPsec connectivity
Duration:00:02:02
Point-to-site virtual private networks
Duration:00:11:09
ExpressRoute
Duration:00:07:54
Choosing the right ExpressRoute peering location
Duration:00:01:34
ExpressRoute peering locations and Azure regions
Duration:00:02:53
ExpressRoute peering location redundancy
Duration:00:02:49
ExpressRoute redundancy with bow-tie design
Duration:00:02:32
ExpressRoute redundancy with square design
Duration:00:01:46
Site-to-site VPN as failover of ExpressRoute
Duration:00:02:02
ExpressRoute and VPN coexistence
Duration:00:03:45
ExpressRoute Global Reach and transitivity via Azure
Duration:00:04:50
Azure VMware Solution and bare-metal offerings
Duration:00:02:14
Azure as Internet breakout for Azure VMware Solution
Duration:00:02:13
Multi-region connectivity to Azure VMware Solution
Duration:00:01:54
Dedicated ExpressRoute gateways
Duration:00:01:59
6. Software-defined Wide Area Networking in Azure
Duration:00:00:05
Software-defined wide area networking
Duration:00:00:25
Before SD-WAN
Duration:00:01:50
SD-WAN basics
Duration:00:00:48
Software-optimized overlay
Duration:00:01:01
Application visibility
Duration:00:01:47
Path selection
Duration:00:01:18
Single pane of glass
Duration:00:02:11
Zero-touch provisioning
Duration:00:01:00
SD-WAN and cloud
Duration:00:03:16
SD-WAN considerations
Duration:00:04:23
SD-WAN integration in Azure
Duration:00:00:41
Hub-and-spoke
Duration:00:00:27
Static routes
Duration:00:07:26
BGP over IPsec
Duration:00:04:54
Azure Route Server
Duration:00:04:29
IPsec API integration
Duration:00:02:53
BGP endpoint
Duration:00:02:35
NVA-in-hub
Duration:00:02:51
Physical co-location
Duration:00:04:02
Global SD-WAN in Azure
Duration:00:04:19
Intra-Azure SD-WAN
Duration:00:04:33
7. Multicloud Networking
Duration:00:00:04
Multicloud
Duration:00:00:24
Definition
Duration:00:01:47
Intentional drivers for multicloud adoption
Duration:00:00:53
Regulation
Duration:00:00:55
Business continuity and disaster recovery
Duration:00:01:22
Geographic
Duration:00:01:03
Technical features
Duration:00:00:23
Commercial
Duration:00:00:39
Organic drivers for multicloud adoptions
Duration:00:00:23
Shadow IT
Duration:00:01:29
Mergers and acquisitions
Duration:00:01:28
Multicloud networking
Duration:00:02:05
Public underlay
Duration:00:07:14
Private underlay
Duration:00:03:18
Customer edge
Duration:00:03:43
Partner edge
Duration:00:01:16
Cloud service provider edge
Duration:00:02:47
Overlay
Duration:00:01:27
IPsec VPN
Duration:00:04:01
SD-WAN
Duration:00:01:01
Multicloud-specific software
Duration:00:04:00
8. Security
Duration:00:00:03
Multi-tier security
Duration:00:02:22
Firewalls
Duration:00:01:18
Azure Firewall in hub and spoke designs
Duration:00:06:50
Workloads in the hub VNet
Duration:00:03:12
Azure Firewall rule types and DNS proxy
Duration:00:03:38
Firewall Network Virtual Appliances
Duration:00:05:11
NVA high availability with BGP
Duration:00:03:02
Firewall NVAs and Gateway Load Balancer
Duration:00:01:50