Taicheng's Profile

The hub and spoke network topology is an excellent choice for enterprises seeking to strike a balance between isolating workloads and sharing crucial services such as identity and security. This configuration centers around an Azure virtual network, serving as a central point of connectivity – the hub. Surrounding this hub are the spokes, which are virtual networks linked…

The following diagram shows the planned implementation of the virtual networks and subnets.

Effective naming includes the most relevant information for the resource type; for example, if we consider a public IP address, we can have the following information: The following example shows the naming convention for a public IP address:

Instead of creating NSGs and defining policies on explicit IP Addresses, Application Security Groups or ASGs can help you group virtual machines and define network security policies based on those groups. For example, you can have a group of web servers and a group of database servers and then create rules that allow only the web servers to communicate with the…

Azure Application Gateway is a web traffic (OSI layer 7) load balancer that enables you to manage traffic to your web applications. Traditional load balancers operate at the transport layer (OSI layer 4 – TCP and UDP) and route traffic based on source IP address and port, to a destination IP address and port.

Front Door for web apps needing intelligent path-based routing or WAF Cross-Region LB for regional TCP/UDP workloads or when app logic is outside HTTP Traffic Manager only if you want to stay DNS-only and don’t need smart HTTP routing

If you want zone-level redundancy: ➤ If you want rack-level redundancy (within the same zone or region):