In this 2nd configuration profile, I will walk through the resulting configuration of AKS and its effect on the Load Balancer, Virtual Network, VM network interface card, deploy and test a web application into the Azure Kubernetes Service (AKS) cluster. The configuration profile is mainly around the Azure CNI network model. Please read the Part …
Continue reading Comparing Azure Kubernetes Networking Scenarios – Part 3 Azure CNI
In Azure Kubernetes Service (AKS), I personally found the networking concepts much to understand and the configuration options are varied. After reading and experimenting with the configuration options, I hope to clear things up with 3 network oriented AKS configuration profiles I have come up with. Note that I won't be covering App Gateway Ingress …
Continue reading Comparing Azure Kubernetes Networking Scenarios – Part 1 Intro
Background: Getting started and learning Azure Kubernetes Service (AKS) is known to be a steep learning curve. In addition to planning for an AKS setup has a ton of design and architecture considerations. Objective: Go through some essentials for planning a simple Azure Kubernetes Cluster to host your containerized or micro-services application in a development/test …
Continue reading Planning Essentials for an Azure Kubernetes Cluster – Part 1
The previous blog post part 4, I have shown how to create Analytics rules that alert for SQL Injection attacks. I will show the incidents that are generated from this rule to do further investigation. Your organization may have a cyber security team that will monitor, analyze and investigate incidents to evaluate threats. Incidents investigation …
Continuing from blog post Part 2. Azure Sentinel Workbooks provides custom dashboard to see the data in the form of visualizations and tables. These data presentations are based on queries to the log analytics workspace. You can create a workbook from scratch or leverage built-in workbooks by starting from templates. For the Web Application Firewall …
I love using Azure PowerShell to script creating and managing Azure resources. Yet there are two options I like to compare 1) A script editor such as Windows PowerShell ISE or Visual Studio Code; 2) Azure Portal's Browser-based Cloud Shell This post will be based on Windows environments, as opposed to mac and Linux based …
Continue reading Comparing Cloud Shell with PowerShell Editors
I got the following error message in PowerShell, as I was trying to create an Azure virtual network with multiple subnets by running New-AzureRMVirtualNetwork This error message is too vague and need more information. So where do I look? There are two options. 1) The long and manual option Go to Azure Portal > the …
Continue reading Debugging Azure PowerShell with Activity Log
Azure Application Gateway is a platform-as-a-service that offers application delivery controller such layer 7 load balancing/routing capabilities and a web application firewall for many applications. The following is a summarized list of features from the overview documentation Web application firewall HTTP load balancing Cookie-based session affinity Secure Sockets Layer (SSL) offload End to End SSL …
Continue reading Protecting Azure App Service with Azure Application Gateway Part 1: Design
A unique capability of Azure Batch is realized when executing tasks across many nodes in a pool concurrently. That is horizontal scaling. To do this in on-premises servers, it would be very costly and labour intensive. For example, would you be able to ask IT to provision 20, 40, 100+ VMs just to use for …
Continue reading Azure Batch for Internet Data Collection Part 4: Parallel Task Execution
Blog Series Azure Search Overview Pushing Content To An Index with the .NET SDK Azure Search is a platform-as-a-service offering. This requires code and configuration to set up and use. Applicable corporate scenarios Enterprise search on many repositories of data or files that are intended to be available for a wide audience. A lightweight one-stop …
Roy Kim on Azure and Microsoft 365 