Planning Essentials for an Azure Kubernetes Cluster – Part 1

Background: Getting started and learning Azure Kubernetes Service (AKS) is known to be a steep learning curve. In addition to planning for an AKS setup has a ton of design and architecture considerations. Objective: Go through some essentials for planning a simple Azure Kubernetes Cluster to host your containerized or micro-services application in a development/test …

Continue reading Planning Essentials for an Azure Kubernetes Cluster – Part 1

Using Azure Sentinel with Azure App Gateway to Investigate Web Attacks – Part 5 Incidents

The previous blog post part 4, I have shown how to create Analytics rules that alert for SQL Injection attacks. I will show the incidents that are generated from this rule to do further investigation. Your organization may have a cyber security team that will monitor, analyze and investigate incidents to evaluate threats. Incidents investigation …

Continue reading Using Azure Sentinel with Azure App Gateway to Investigate Web Attacks – Part 5 Incidents

Using Azure Sentinel with Azure App Gateway to Investigate Web Attacks – Part 3 Monitoring

Continuing from blog post Part 2. Azure Sentinel Workbooks provides custom dashboard to see the data in the form of visualizations and tables. These data presentations are based on queries to the log analytics workspace. You can create a workbook from scratch or leverage built-in workbooks by starting from templates. For the Web Application Firewall …

Continue reading Using Azure Sentinel with Azure App Gateway to Investigate Web Attacks – Part 3 Monitoring

Comparing Cloud Shell with PowerShell Editors

I love using Azure PowerShell to script creating and managing Azure resources. Yet there are two options I like to compare 1) A script editor such as Windows PowerShell ISE or Visual Studio Code; 2) Azure Portal's Browser-based Cloud Shell This post will be based on Windows environments, as opposed to mac and Linux based …

Continue reading Comparing Cloud Shell with PowerShell Editors

Debugging Azure PowerShell with Activity Log

I got the following error message in PowerShell, as I was trying to create an Azure virtual network with multiple subnets by running New-AzureRMVirtualNetwork This error message is too vague and need more information. So where do I look? There are two options. 1) The long and manual option Go to Azure Portal > the …

Continue reading Debugging Azure PowerShell with Activity Log

Protecting Azure App Service with Azure Application Gateway Part 1: Design

Azure Application Gateway is a platform-as-a-service that offers application delivery controller such layer 7 load balancing/routing capabilities and a web application firewall for many applications. The following is a summarized list of features from the overview documentation Web application firewall HTTP load balancing Cookie-based session affinity Secure Sockets Layer (SSL) offload End to End SSL …

Continue reading Protecting Azure App Service with Azure Application Gateway Part 1: Design

Azure Batch for Internet Data Collection Part 4: Parallel Task Execution

A unique capability of Azure Batch is realized when executing tasks across many nodes in a pool concurrently. That is horizontal scaling. To do this in on-premises servers, it would be very costly and labour intensive. For example, would you be able to ask IT to provision 20, 40, 100+ VMs just to use for …

Continue reading Azure Batch for Internet Data Collection Part 4: Parallel Task Execution