Azure Classroomnotes 11/Feb/2023

Azure VNet Workshop – Part 1

Azure Vnet considerations

• In the case of Azure subnet, we cannot use the following addresses (Assuming your subnet address space is 192.168.0.0/24)
  • 192.168.0.0 Network Address
  • 192.168.0.255 Broadcast Address
  • 192.168.0.1 Reserves this for default gateway
  • 192.168.0.2, 192.168.0.3 which are used by Azure for DNS purposes
• Azure Vnet supports two kinds of subnets
  • Subnet
  • Gateway Subnet (This subnet is used for vpns, Application Gateway etc.. where subnet will be used by Azure to create managed resources)
• The smallest subnet is /29 and largest subnet is /2
• Create a network with cidr range other than private cidrs
  
  
  

Azure Bastion

• Create a vnet with two subnets.
• Create a linux vm and window vm without public ip
  
• Azure has a fully managed Bastion as a PaaS, which will allow you to connect to virtual machines in private network from azure portal.
  
• Azure Bastion has two offerings
  • Basic SKU
  • Stanadard SKU
• Azure Bastion Pricing Refer Here
• Create a Bastion for existing VNet
  
  
• Once the bastion is created, we can connet to azure vms using Bastion Refer Here
  
  
  
  

Preparation

• Create a Ubuntu 20.04 Linux and install lamp

sudo apt update
sudo apt install apache2 stress -y
sudo apt install php libapache2-mod-php php-mysql -y
sudo -i 
echo "<?php phpinfo(); ?>" > /var/www/html/info.php

• Ensure 80 port is open to all. Navigate to http://publicip/info.html
  
• Create a new resource group called as workshop-images
• Now navigate to vm and capture the vm image
  
  
  
• Once the vmimage is created, delete the workshop resource group

Gallery => workshop
image => qtapache
version => 1.0.0
RG => workshop-images

Load Balancing

• Applications in Azure Run on
  • virtual machines
  • Azure App services
  • AKS
  • Functions
• If we need HA, we will be having redundant resources and Automatic scaling.
• Azure has load balancing supporting
  • Single Region
  • Region with Zones
  • Multiple Regions
• Layer 4 vs Layer 7 loadbalancing Refer Here
• Design Choices
  

Lab Setup

• Create a vnet with 3 subnets
  • web
  • app
  • db
• Try to use a region where zones are supported
• Now create a vm with the image created earlier in atleast 2 zones and have public ips for now
  

Azure Load Balancer

• Azure Load Balancer is fully managed Layer 4 Loadbalancer from Azure.
  
• Refer Here for official docs
• Azure Load balancer components
  • Front end
  • Backend pool
  • Health Probes
  • LB Rules
• Create 3 vms in web subnet
  
• Lets create an Azure Load Balancer
  
  
  
  
  
  
  
  
  
• Navigate to front end ip
  
  
• Backend pools
• 
• Health probes
  
• Load Balancing rules
  
• Access the applicaton using http://<lb-ip>/info.php