Blogging all things Microsoft Azure
In this blog, I am going to be summarising how you can secure your Virtual network (vNET) with a combination of Azure Firewall and Network Security Group (NSG) Considerations for this will be that the environment will be a hub-spoke setup, link to test environment of this deployment is found at the bottom of this…
Network Watcher Connection Monitor is a pretty cool service in Azure, ever need to monitor a Virtual machine but third-party extensions cannot be configured? Connection Monitor allows you to monitor Virtual Machines ports to ensure they’re still listening and reachable. How does it work? The connection is created from a Source Virtual Machine to your…
From time to time, a Point-to-Site VPN (P2S) is required to access your Azure Virtual Network securely from a range of computers. This VPN setup is configured using an Azure Gateway within your Virtual Network. In this blog, I will detail a test setup of how you can create this P2S configuration along with the…
Took a different approach today, spent the morning speaking to vendors and some Microsoft staff on various resources within Azure. This followed by a couple of Microsoft Mechanic sessions, the first focusing on Azure data warehousing and how the newly announced Azure Synapse Analytics service can benefit this even further Azure Synapse, combining data analytics…
Azure Automation runbooks can be used for numerous scheduled tasks throughout your Azure subscription, in this blog I will show how it can be used to stop & start Azure Firewall in both a schedule and invoking using a webhook. What types of runbooks are available? Type Description Graphical Based on Windows PowerShell that uses…
Azure DNS is a resource to host Domain Name System (DNS) in Azure, with this comes: Ultra-high availability Fast DNS queries Further redundancy of DNS due to Azure DNS being classified with ultra-high availability No additional Virtual Machine (VM) to act as a DNS server if further Active Directory Integration is not required Ability to…
In my previous blog I gave an overview of Azure Managed Identity, specifically around virtual machines and managed identities. In this, I will be detailing the process of implementing a secure use of Key Vault with this virtual machine and how Identity Management can be used to retrieve secrets. There are two types of managed…
Keeping credentials safe and secure has always been a priority, even more so when in the cloud – quite a potential challenge this can be within your application, virtual machine or requirements to authenticate to additional cloud services Within Microsoft Azure, using managed identities is one of the security precautions can assist you with the…
Within your Azure Virtual Network (vNET) you may require connectivity from an additional source, options available include:- vNET Peer VPN Gateway ExpressRoute Gateway vNET Peer Common connection method for theoretically peering onto another Azure vNET, routing is done via the the Microsoft backbone and to the end user it will look like an extension of…