Networking

—the section is under development—

Reference Network Architectures

 Virtual network peering seamlessly connects two Azure virtual networks, merging the two virtual networks into one for connectivity purposes. Gateway transit is a peering property that lets one virtual network use the VPN gateway in the peered virtual network for cross-premises or VNet-to-VNet connectivity. The following diagram shows how gateway transit works with virtual network peering.

Networking Services and Features

Network Security Groups

Azure network security group (NSG) allows to filter network traffic to and from Azure resources in an Azure virtual network. A network security group contains security rules that allow or deny inbound network traffic to, or outbound network traffic from, several types of Azure resources. For each rule, you can specify source and destination, port, and protocol. You can associate zero, or one, network security group to each virtual network subnet and network interface in a virtual machine. The same network security group can be associated to as many subnets and network interfaces as you choose.

Express Route

ExpressRoute allows to extend on-premises networks into the Microsoft cloud over a private connection with the help of a connectivity provider. With ExpressRoute, it is possible to establish connections to Microsoft cloud services, such as Microsoft Azure and Microsoft 365.

Supported Express Route connection types: CloudExchange Co-locationPoint-to-point Ethernet ConnectionAny-to-any (IPVPN) Connection, and ExpressRoute Direct.

Advantages of Express Route:

  • Layer 3 connectivity between on-premises network and the Microsoft Cloud through a connectivity provider. Connectivity can be from an any-to-any (IPVPN) network, a point-to-point Ethernet connection, or through a virtual cross-connection via an Ethernet exchange.
  • Connectivity to Microsoft cloud services across all regions in the geopolitical region.
  • Global connectivity to Microsoft services across all regions with the ExpressRoute premium add-on.
  • Dynamic routing between your network and Microsoft via BGP.
  • Built-in redundancy in every peering location for higher reliability.
  • Connection uptime SLA.
  • QoS support for Skype for Business.

%d bloggers like this: