Azure Networking Concepts
DevOps Engineer with the Azure DevOps pipelines and repos and deployment skills. Passionate about learning about the DevOps tools and how it automates our deliverables.
Azure Networking refers to the set of services, tools, and components that allow communication between Azure resources, the internet, and on-premises networks. It enables secure, scalable, and high-performance connectivity for applications running in the cloud.
Virtual Network VNET: It is an isolated network in azure
It will helps to communicate the Azure resources with each other
SubNet: It is a part of the Vnet or subdivision of it when we have multiple resource like storage and Vms etc we will use subnets
Firewall: It helps us to not allow unauthorised id inside the resource or service
Network Security Groups (NSGs) – Restrict inbound/outbound traffic.
Route Tables – Define custom traffic routes.
Load Balancing in Azure
Azure Load Balancer (Layer 4): Distributes traffic across VMs.
Application Gateway (Layer 7): Manages web traffic with SSL termination.
Azure Front Door: Global HTTP/HTTPS traffic routing for fast performance.
Traffic Manager: DNS-based routing across Azure regions.
Secure Connectivity & Firewalls VPN Gateway: Connects on-premises networks to Azure securely.
ExpressRoute: Private, high-speed connection to Azure.
Azure Firewall: Cloud-based firewall with rule-based filtering.
DDoS Protection: Defends against distributed denial-of-service attacks.
Private & Hybrid Connectivity
Private Link & Private Endpoints: Securely access PaaS services over a private IP.
VNet Peering: Connects VNets for internal communication.
Azure Bastion: Secure, browser-based access to VMs.
Let’s say your app is like a building:
VNet = the entire campus
Subnets = different departments
NSG = security guard at each door
IP address = address of each office
DNS = receptionist who gives directions
Load Balancer = person directing visitors to available staff
Private Endpoint = secret hallway to the secure vault