Sign in

Due to a recent response left by one of the visitors, I decided to share some words with everyone who visits here.

First of all, to all of you, no matter for what reason you visits my blog,

  1. I sincerely hope that you would learn or take…

Site to Site VPN Connection Filtered by Azure Firewall

Image: https://petri.com/how-to-architect-an-azure-firewall-with-a-vpn-gateway

Site to Site VPN connection is commonly used in hybrid structure. So in this post, I will show you the key steps for this architecture to work.

I have three Vnets for this lab,

  • DMZ Hub with FW subnet: 192.168.3.0/24, Gateway subnet…

Azure Vnet Peering Connection Filtered by Azure Firewall

Image:https://docs.microsoft.com/en-us/azure/firewall-manager/secure-hybrid-network

This lab is pretty simple. The main idea is to filter Vnet peering connections. There are three Vnets in this architecture, one as hub, hosting Azure Firewall and other two as spokes, hosting VMs.

Spokes will peer with hub, traffics between spokes are forwarded to Azure Firewall for filtering…

Azure Application Gateway before Azure Firewall

Image: https://docs.microsoft.com/en-us/azure/architecture/example-scenario/gateway/firewall-application-gateway#application-gateway-before-firewall

Same as before, requests came in from customer regarding couple Azure Firewall scenarios. In order to respond with profession, a prior lab is definitely needed.

Usual and common steps are omitted. Only key steps are recorded. For this structure, packets from client to AG must forward to FW…

Azure Key Vault with Azure Service Endpoints and Private Link — Part 1

Azure Service Points (SE) and Azure Private Link (PL) are two pretty fundamental and essential services when we are talking about network security in Azure.

There are similarities and differences between these two services and sometimes, the behavior of these two are different on Azure service itself. …

Dynamic VPN Routing Between Azure Virtual WAN and AWS Transit Gateway using BGP

Image:https://www.mobilise.cloud/azure-to-aws-vpn-with-dynamic-routing/
Image:https://jackstromberg.com/2021/03/establishing-an-aws-vpn-tunnel-to-azure-virtual-wan-active-active-bpg-configuration/

In the previous post, I wrote about Static Site-to-Site VPN Between Azure Vnet and AWS VPC. In this post, I will write about dynamic VPN routing between Azure and AWS using BGP protocol.

Assuming all necessary resources such as, Vnet, VM, vWAN, VPC, Transit Gateway etc are already…

Static Site-to-Site VPN Between Azure Vnet and AWS VPC

Image:https://github.com/ricmmartins/azure-vpn-aws

Okay.. believe it or not, it took me almost two days to figure out how to configure BGP and static VPN between Azure and AWS. That’s kinda frustrating but much relief and delighted when I finally did it!

I am also glad that I found articles on internet helped…

Azure Virtual WAN with Secured Virtual Hub

Image:https://docs.microsoft.com/en-us/azure/virtual-wan/virtual-wan-about

Recently one of my on going projects requires centralized routing, multi location connectivity, custom DNS settings and with security. The best solution is Azure Virtual WAN integrated with Azure Firewall. …

Continue from the previous post, Azure Front Door Basic Walk Through, I will configure the followings on this post.

  • Force HTTP to HTTPS
  • Configure your custom domain name
  • Setup HTTPS by using AFD managed SSL

In this demo, I have an Azure Frond Door…

Azure Firewall with Custom DNS and DNS Proxy

Image:https://docs.microsoft.com/en-us/azure/firewall/overview

One of my ongoing projects needs to forward DNS queries from resources within Azure to on-premise DNS and Azure Firewall with custom DNS and DNS proxy fulfills my requirement perfectly. Therefore, I am writing this blog for my recording as well as sharing it to you all.

What is Azure Firewall?

Azure Firewall…

Yst@IT

AWS Certified SA, SysOps & Developer Associate, Alibaba Cloud certified SA. Focusing on Azure, Prometheus w/ Grafana, ELK and K8S now.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store