Networking
Last updated
Last updated
Linking compute resources and providing access to applications is the key function of Azure networking. Networking functionality in Azure includes a range of options to connect the outside world to services and features in the global Azure datacenters.
enables Azure resources to communicate with
each other,
users on the internet,
on-premises client computers.
Virtual Network peering allows linking virtual networks which can be in separate regions thereby creating a global interconnected network.
UDR is user-defined routing that allows network admins to control the routing tables between subnets within a VNet, as well as between VNets
a type of virtual network gateway
Azure VPN gateway instances are deployed in Azure Virtual Network instances and enables:
Site-to-Site: connect on-premises datacenters to virtual networks
Point-to-Site: connect individual devices to virtual networks
Network-to-Network: connect virtual networks to other virtual networks
Layer 3 connectivity between your on-premises network and the Microsoft Cloud through a connectivity provider.
connectivity can be from
any-to-any (IPVPN) network,
point-to-point Ethernet connection
virtual cross-connection via an Ethernet Exchange.
establish connection to Microsoft cloud services such as Azure and Microsoft 365.
dynamic routing between your network and Microsoft via BGP
offers
reliability
faster speed
consistent latencies
high security
Azure Firewall is a managed, cloud-based network security service that helps protect resources in your Azure virtual networks.
Azure Firewall is a stateful firewall. A stateful firewall analyzes the complete context of a network connection, not just an individual packet of network traffic.
Azure Application Gateway also provides a firewall that's called the web application firewall (WAF). WAF provides centralized, inbound protection for your web applications against common exploits and vulnerabilities. Azure Front Door and Azure Content Delivery Network also provide WAF services.
A network security group enables you to filter network traffic to and from Azure resources within an Azure virtual network.
Service name
Service function
Azure Virtual Network
Connects VMs to incoming virtual private network (VPN) connections.
Azure Load Balancer
Balances inbound and outbound connections to applications or service endpoints.
Azure Application Gateway
Optimizes app server farm delivery while increasing application security.
Azure VPN Gateway
Accesses Azure Virtual Networks through high-performance VPN gateways.
Azure DNS
Provides ultra-fast DNS responses and ultra-high domain availability.
Azure Content Delivery Network
Delivers high-bandwidth content to customers globally.
Azure DDoS Protection
Protects Azure-hosted applications from distributed denial of service (DDOS) attacks.
Azure Traffic Manager
Distributes network traffic across Azure regions worldwide.
Azure ExpressRoute
Connects to Azure over high-bandwidth dedicated secure connections.
Azure Network Watcher
Monitors and diagnoses network issues by using scenario-based analysis.
Azure Firewall
Implements high-security, high-availability firewall with unlimited scalability.
Azure Virtual WAN
Creates a unified wide area network (WAN) that connects local and remote sites.
Policy-based VPNs
Route-based VPNs