Comparing Azure Kubernetes Networking Scenarios – Part 4 Http App Routing

In this 3rd configuration profile, I will walk through the resulting configuration of AKS and its effect on the Load Balancer, Virtual Network, VM network interface card, deploy and test a web application into the Azure Kubernetes Service (AKS) cluster. The configuration profile is mainly around the Azure CNI network model and enabling the HTTP …

Continue reading Comparing Azure Kubernetes Networking Scenarios – Part 4 Http App Routing

Comparing Azure Kubernetes Networking Scenarios – Part 2 Kubenet

In this 1st configuration profile, I will walk through the resulting configuration of AKS and its effect on the Load Balancer, Virtual Network, VM network interface card, deploy and test a web application in the Azure Kubernetes Service (AKS) cluster. The configuration profile is mainly around the Kubenet network model. Kubenet is a very basic, …

Continue reading Comparing Azure Kubernetes Networking Scenarios – Part 2 Kubenet

Comparing Azure Kubernetes Networking Scenarios – Part 3 Azure CNI

In this 2nd configuration profile, I will walk through the resulting configuration of AKS and its effect on the Load Balancer, Virtual Network, VM network interface card, deploy and test a web application into the Azure Kubernetes Service (AKS) cluster. The configuration profile is mainly around the Azure CNI network model. Please read the Part …

Continue reading Comparing Azure Kubernetes Networking Scenarios – Part 3 Azure CNI

Comparing Azure Kubernetes Networking Scenarios – Part 1 Intro

In Azure Kubernetes Service (AKS), I personally found the networking concepts much to understand and the configuration options are varied. After reading and experimenting with the configuration options, I hope to clear things up with 3 network oriented AKS configuration profiles I have come up with. Note that I won't be covering App Gateway Ingress …

Continue reading Comparing Azure Kubernetes Networking Scenarios – Part 1 Intro

ARM Templates Fundamentals: My Development Workflow

Objective: To show my own experience and development workflow for building out infrastructure-as-code with Azure Resource Manager (ARM) Templates. My hope is that for novices this provides some insight and starting point to develop your own workflow. My Infrastructure as code workflow: 1. Setup a development azure subscription and resource group for your ARM deployment. …

Continue reading ARM Templates Fundamentals: My Development Workflow

Planning Essentials for an Azure Kubernetes Cluster – Part 2

Continuing from blog post Part 1, the objective is to go through some essentials for planning out a simple Azure Kubernentes Cluster to host your containerized or microservices application in a development/test or proof of concept (POC) environment. Also, to lay out the foundation to build upon towards a production grade environment. Identity Access Security …

Continue reading Planning Essentials for an Azure Kubernetes Cluster – Part 2

Planning Essentials for an Azure Kubernetes Cluster – Part 1

Background: Getting started and learning Azure Kubernetes Service (AKS) is known to be a steep learning curve. In addition to planning for an AKS setup has a ton of design and architecture considerations. Objective: Go through some essentials for planning a simple Azure Kubernetes Cluster to host your containerized or micro-services application in a development/test …

Continue reading Planning Essentials for an Azure Kubernetes Cluster – Part 1

ARM Templates Fundamentals: My Development Tools

Azure ARM Templates provides the ability to deploy azure resource infrastructure in a repeatable, declarative and repeatable state. It is infrastructure-as-code. For those getting started and wondering what they need to build your tool belt, I will share what my tool belt and development process look like. My Software and tools My operating system is …

Continue reading ARM Templates Fundamentals: My Development Tools

Using Azure Sentinel with Azure App Gateway to Investigate Web Attacks – Part 6 Hunting

The previous previous blog post is part 5 in this series. Azure Sentinel provides features for Hunting as a proactive step of looking for security threats for security analysts through the mountains of data collected. According to this article Threat Hunting Vs. SIEM by Infosec, hunting is defined as “Threat hunting is the act of …

Continue reading Using Azure Sentinel with Azure App Gateway to Investigate Web Attacks – Part 6 Hunting

Using Azure Sentinel with Azure App Gateway to Investigate Web Attacks – Part 5 Incidents

The previous blog post part 4, I have shown how to create Analytics rules that alert for SQL Injection attacks. I will show the incidents that are generated from this rule to do further investigation. Your organization may have a cyber security team that will monitor, analyze and investigate incidents to evaluate threats. Incidents investigation …

Continue reading Using Azure Sentinel with Azure App Gateway to Investigate Web Attacks – Part 5 Incidents