A deep understanding of Azure networking is crucial to implementing a secure hybrid cloud solution. This course teaches the key aspects of networking for services in Azure, how to integrate them with on-premises services, and enable secure access.
In order to secure your information, you need to understand how your network, well, works. This course, Architecting and Implementing Azure Networking, will teach you how to use Azure networking to secure your assets. It explores the options available for Azure virtual networks and the best ways to use them with services in Azure and outside of Azure. You'll learn about the numerous options for publishing services in a highly available manner, along with how to secure and restrict communications as required. By the end of this course, you'll have the foundational understanding of Azure networking needed to architect and manage networking in Azure.
John Savill is an 11-time MVP, and he holds many Microsoft certifications
including Azure Infrastructure and Azure Architecture specialist. John is
the author of the popular FAQ for Windows and a senior contributing editor
to Windows IT Pro. John has written eight books on Microsoft technologies
including Mastering Microsoft Azure Infrastructure Services and Mastering
Windows Server 2016 Hyper-V.
Course Overview Hi everyone. My name is John Savill, and welcome to my course, Architecting and Implementing Azure Networking. I'm a technical architect working with many of the largest companies in the world to help with them with infrastructure related projects, both on-premises, in the cloud, and a bit of both. If you're looking to leverage Azure infrastructure services and integrate them with other non-Azure services it's critical to understand the networking capabilities of Azure. By fully understanding how Azure infrastructure implements networking, enables services to be published to the internet, and how to securely establish private connectivity you'll be able to fully utilize Azure in the most secure way while implementing a truly seamless hybrid cloud solution. In this course we're going to dive into the types of networking and connectivity services available, how to use them, and how to manage them. Some of the major topics that we will cover include what a virtual network is and how it's used, how services in Azure can be exposed to the internet, how to connect the services in Azure to on-premises locations, and other networks in a secure manner. By the end of this course you will be able to identify the right way to use Azure networking for your infrastructure projects, including solutions that include both Azure and non-Azure components. Before beginning the course you should be familiar with cloud basics, however, I'll be sure to quickly review all the critical information. I hope you'll join me on this journey to learn Azure networking with the Architecting and Implementing Azure Networking course at Pluralsight.
Virtual Networks This module covers virtual networks, including an overview of what virtual networks are, and how they can be used, creating virtual networks, and adding virtual machines onto them, and how we can leverage static IP addresses within a virtual network for those virtual machines that always need the same IP address like a domain controller or SQL Server, how exactly I can facilitate that using the various mechanisms available through the Azure virtual network.
Network Security Groups and Virtual Appliances This module covers Network Security Groups and Virtual Appliances, in particular, controlling the traffic flow. I talked previously about a virtual network, and virtual subnets, but what if I don't want just open communication between all of the different VMs and services in a virtual network, and to the internet? So we'll actually dive into looking at using network security groups to control that flow of traffic, and also how I would go about using network appliances, these virtual appliances available in the marketplace, which can actually act as routers, gateways, firewalls, and other types of network appliance.
Enabling External Access with Load Balancers and Public IPs This module covers enabling external access to the services running in our Azure virtual networks, both through a load balancer, and through directly assigning a public IP to a virtual machine. Therefore, we're going to dive into exactly what is a public IP, what are load balancers, some of the configurations we can do around them, their creation and their management, and then finishing with a look at Traffic Manager. Not part of the core Azure infrastructure, but it's actually an additional Azure service that, when I think about load balancing traffic, can be very, very useful when I have services not just in Azure, but on-premises or when I have services in multiple locations. Traffic Manager can be a very powerful tool to distribute traffic based on the user's location, and then what is closest to them.
Using Azure VPN to Connect to On-premises and User Machines This module covers connecting your Azure virtual network to your on-premises locations that may be even individual user machines using the Azure site-to-site and point-to-site VPN capabilities. What we'll cover includes the details around the site-to-site VPN, its structure, how I create it, and then a quick look at the point-to-site virtual private network capability.
Understanding and Using ExpressRoute In this module I want to look at exactly what is ExpressRoute, and how you can use it. We're going to dive into an introduction to exactly what ExpressRoute includes, and is capable of, the types of ExpressRoute providers, and then what are the services I can actually connect to via ExpressRoute, because yes, it is a replacement for site-to-site VPN, but it's also a whole lot more.