Post on 20-May-2020
Event Sponsors
Modern Cloud:
IaaS x PaaS
Alessandro Cardoso
RXP Services Technology Strategist: Cloud, Security and Identity
Microsoft MVP Cloud and Datacenter | Microsoft P-SSP
https://manage.windowsazure.com
https://portal.azure.com
PaaS RolesIaaS VM’s
File Servers Local AD SQL VMs
• Support for key server applications and workloads
• Easy storage manageability
• High availability features
• Advanced networking
• Integration with compute PaaS
• Easy Application Migration
* No guaranteed SLA for single VM instance
Microsoft Partner Ready
Virtual Network and ExpressRoute
Publicinternet
Publicinternet
Publicinternet
Hybrid Public/Private Cloud
Network Security Groups (NSG)
• Define access control rules for inbound/outbound traffic to a VM or group of VMs in a subnet
• NSG rules can be changed at any time and apply to all instances
• NSG can be associated with:
• A single VM in a VNet
• A subnet in a VNet
• A VM and a Subnet together for added security
• Rules are processed in order of priority
• Rules are based on 5-tuple (source/dest IP/port, protocol)
Operations Management SuiteSaaS Management offering that works with any cloud
Azure
WindowsServer(VM)
WindowsServer(VM)
WindowsServer(VM)
WindowsServer(VM)
Linux(VM)
Amazon Web Services
WindowsServer(VM)
WindowsServer(VM)
Linux(VM)
Linux(VM)
Linux(VM)Operations
Management Suite (OMS)
Private Clouds (Hyper-V, VMware, OpenStack)
WindowsServer(Guest)
WindowsServer(Guest)
WindowsServer(Guest)
WindowsServer(Guest)
Linux(Guest)
Automation
Microsoft Partner Ready
Mixed Mode with Virtual Network
IaaS VM
IaaS VM
IaaS VM
IaaS VM
Business Components &
Entities
Business Components &
Entities
Persistent Disk
Persistent Disk SQL
SQL
WebRole
WebRole
PaaS IaaS
Common issues / mistakes
• Do not put static IP configuration inside the OS
• Although we support Multiple VIPs per Cloud Service, you cannot create 2
endpoint with the same LocalPort using 2 different VIPs
• VMs lose IPs when are deallocated, use static IP for your VMs
• Cloud Service lose the IP when all the instances are deallocated, use
Reserved IP
• VMs secondary NIC cannot be used for public facing
• VMs requires Internet Access to contact license server (while using force
tunneling). You can use custom routes in this scenario
• http://blogs.msdn.com/b/mast/archive/2015/05/20/use-azure-custom-
routes-to-enable-kms-activation-with-forced-tunneling.aspx.
Event Sponsors
Use the twitter handles:
#innovationdays @_innovationdays
Top twitter of the day will win a gift
THANK YOU