Azure Virtual Machines Anatomy

Virtual Machines can be pretty complex little beast.  They can have multiple disks, multiple NICs in different subnets, can be exposed on the public internet either directly or through a load balancer, etc.  . In this article, we’ll look at the anatomy of a Virtual Machine (VM):  what are the components it relates to. We … More Azure Virtual Machines Anatomy

Azure Application Gateway Anatomy

Back in May, we talked about Azure Application Gateway. In this article, we’re going to look at its anatomy, i.e. its internal component as exposed in the Azure Resource Manager (ARM) model. A lot of Azure Resource has an internal structure.  For instance, a Virtual Network has a collection of subnets. Azure Application Gateway has … More Azure Application Gateway Anatomy

Accessing Azure Key Vault from within Azure API Management

Today we look at a common although slightly advanced scenario with API Management: accessing Azure Key Vault from Azure API Management. In an Enterprise, API Management service are often shared between teams. This means a lot of people might open it in the Portal and look at it. It also means that putting secrets in … More Accessing Azure Key Vault from within Azure API Management

API Management – OAuth and private back-ends

Azure API Management is a fully managed API Gateway service. In my last article we looked at the anatomy of the service. Today I wanted to demonstrate how to use OAuth with JWT token to protect an API Front End. I also wanted to show how we can access backend APIs on private networks. There … More API Management – OAuth and private back-ends

About Ingress in Azure Kubernetes Service (AKS)

I did a bit of experimentation with Kubernetes Ingress, more specifically NGINX, lately. I found the concept of Ingress utterly confusing at first. It is actually relatively simple. So, I thought I would share this sense of simplicity. This article is conceptual. There will be no code nor even Portal tour. If you want to … More About Ingress in Azure Kubernetes Service (AKS)

Kubernetes Services in Azure AKS – Network integration

Azure Kubernetes Services (AKS) is a managed Kubernetes service in Azure. Not only does it provides a managed cluster, it also integrates with Azure services. In this article we’ll explain the integration between Kubernetes’ services and Azure Networking. We won’t give code sample though as we’ll keep that for a future article. Update (30-08-2018): See … More Kubernetes Services in Azure AKS – Network integration

Using Application Gateway with VNET peering

As I write these lines (early November 2017), Application Gateway doesn’t integrate well across VNET peering. More precisely, if we put the gateway in a VNET and have scale sets in another, the usual integration, where the scale set registers its VM automatically as the size of the set evolves, doesn’t work. In this article, … More Using Application Gateway with VNET peering

VNET Service Endpoints for Azure SQL & Storage

It’s finally here, it has arrived:  Azure Virtual Network Service Endpoints. This was a long requested “Enterprise feature”. Let’s look at what this is and how to use it. Please note that at the time of this writing (end-of-September 2017) this feature is available only in a few region in Public Preview: Azure Storage: WestCentralUS, … More VNET Service Endpoints for Azure SQL & Storage