Problem You need to route outgoing subnet traffic to Azure and/or on-premises networks and/or internet resources. Solution Create an Azure route table, add one or more custom routes to it, and associate the new route table with your subnets  Steps 4. Create a new route table resource using the following command. Replace <route-table-name> with your desired name: 5.…

The Standard SKU supports availability zones with zone-redundant and zonal frontends for inbound and outbound traffic and health probes, including TCP, HTTP, and HTTPS, while the Basic SKU only supports TCP and HTTP. Another benefit of using the Standard SKU is the ability to use HA ports. Azure services that are compatible with availability zones fall into three…

Database sharding is a technique used to horizontally scale a database by splitting (or partitioning) large datasets into smaller, faster, and more manageable parts called shards. Each shard is an independent database that holds a subset of the overall data. Together, all the shards make up the complete dataset. How It Works: For example: User…

Azure Monitor is a central tool and resource that provides complete management features that allow you to monitor an Azure subscription. It provides management features for activity logs, diagnostic logs, metrics, Application Insights, and Log Analytics. It should be treated as a dashboard and management resource for all other monitoring capabilities. Azure Log Analytics Azure Log Analytics…

VMSSes are Azure compute resources that you can use to deploy and manage a set of identical VMs. This enables these VMs to be load balanced using an Azure load balancer or an application gateway. The VMs could be either Windows or Linux VMs. They can run automated scripts using a PowerShell extension and they can be…

Availability sets: A minimum of two VMs should be hosted within the availability set to make them highly available. All VMs in the availability set become highly available because they are placed on separate physical racks in the Azure datacenter. During updates, these VMs are updated one at a time, instead of all at the…

A common challenge for developers is the management of secrets, credentials, certificates, and keys used to secure communication between services. Manual handling of secrets and certificates are a known source of security issues and outages. Managed identities eliminate the need for developers to manage these credentials. Applications can use managed identities to obtain Microsoft Entra…

Virtual Network Address Translation (NAT) is a feature of a VNet that allows outbound internet communication from VMs and other resources connected to the VNet. When you enable NAT, the VNet assigns a public IP address to the VM or resource, which can then communicate with the internet using that IP address. Azure NAT is a feature that enables…

The hub and spoke network topology is an excellent choice for enterprises seeking to strike a balance between isolating workloads and sharing crucial services such as identity and security. This configuration centers around an Azure virtual network, serving as a central point of connectivity – the hub. Surrounding this hub are the spokes, which are virtual networks linked…