├── .github └── workflows │ └── markdown-link-checker.yml ├── LICENSE └── README.md /.github/workflows/markdown-link-checker.yml: -------------------------------------------------------------------------------- 1 | name: Markdown Link Checker 2 | 3 | on: 4 | push: 5 | branches: 6 | - main 7 | schedule: 8 | # Run everyday at 9:00 AM (See https://pubs.opengroup.org/onlinepubs/9699919799/utilities/crontab.html#tag_20_25_07) 9 | - cron: "0 9 * * *" 10 | workflow_dispatch: 11 | 12 | jobs: 13 | markdown-link-checker: 14 | runs-on: ubuntu-latest 15 | steps: 16 | - uses: actions/checkout@master 17 | - name: markdown-link-check 18 | id: markdownlinkcheck 19 | continue-on-error: true 20 | uses: gaurav-nelson/github-action-markdown-link-check@v1 21 | with: 22 | use-quiet-mode: 'yes' 23 | use-verbose-mode: 'yes' 24 | - name: Sleep for 3hrs 25 | if: ${{ steps.markdownlinkcheck.outcome == 'failure' && steps.markdownlinkcheck.conclusion == 'success' }} 26 | uses: juliangruber/sleep-action@v1 27 | with: 28 | time: 10800s #Sleep for 3hrs. In case link host is offline for maintenance. 29 | - name: markdown-link-check-retry 30 | if: ${{ steps.markdownlinkcheck.outcome == 'failure' && steps.markdownlinkcheck.conclusion == 'success' }} 31 | uses: gaurav-nelson/github-action-markdown-link-check@v1 32 | with: 33 | use-quiet-mode: 'yes' 34 | use-verbose-mode: 'yes' 35 | -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- 1 | MIT License 2 | 3 | Copyright (c) 2023 Oliver Gulich 4 | 5 | Permission is hereby granted, free of charge, to any person obtaining a copy 6 | of this software and associated documentation files (the "Software"), to deal 7 | in the Software without restriction, including without limitation the rights 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell 9 | copies of the Software, and to permit persons to whom the Software is 10 | furnished to do so, subject to the following conditions: 11 | 12 | The above copyright notice and this permission notice shall be included in all 13 | copies or substantial portions of the Software. 14 | 15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR 16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, 17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE 18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER 19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, 20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE 21 | SOFTWARE. 22 | -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | # A Curated List of Azure Networking Resources 2 | 3 | The resources linked in this repo can be used to prepare for your AZ-700 exam or simply to get more familiar with networking concepts in Microsoft Azure. # 4 | 5 | Enjoy! :roller_coaster: 6 | 7 | [![Awesome](https://cdn.rawgit.com/sindresorhus/awesome/d7305f38d29fed78fa85652e3a63e154dd8e8829/media/badge.svg)](https://github.com/sindresorhus/awesome) 8 | [![Markdown Link Checker](https://github.com/oliverlabs/azure-networking/actions/workflows/markdown-link-checker.yml/badge.svg)](https://github.com/oliverlabs/azure-networking/actions/workflows/markdown-link-checker.yml) 9 | 10 | ## Blogs 11 | 12 | 1. [MS Tech Community: Azure Network Security Blog](https://techcommunity.microsoft.com/t5/azure-network-security-blog/bg-p/AzureNetworkSecurityBlog) 13 | 2. [Azure Network Security - Interactive Guide](https://mslearn.cloudguides.com/guides/Azure%20network%20security) 14 | 15 | ## GitHub Resources 16 | 17 | 1. [Enterprise-class networking in Azure - Hands-on Lab][def1] 18 | 19 | In this workshop, you will learn to setup and configure a virtual network with subnets in Azure. You will learn how to secure the virtual network by deploying a network virtual appliance and configure firewall rules and route tables. Additionally, you will set up access to the virtual network with a jump box and a site-to-site VPN connection. 20 | 21 | At the end of the workshop, you will be better able to plan and design virtual networks in Azure with multiple subnets to filter and control network traffic. In addition, you will learn to create a virtual network and provision subnets, create route tables with required routes, build a management jump box, configure firewalls to control traffic flow, and configure site-to-site connectivity. 22 | 2. [Azure Private DNS Resolver Micro-Hack][def2] 23 | Great diagrams and terraform code. 24 | 3. [Azure Private DNS Resolver Bicep Lab][def3] 25 | 4. [Basic Terraform Network][def4] 26 | 5. [Azure Terraform VNet][def5] 27 | 6. [Traffic Flows in Common Azure Networking Patterns][def6] 28 | 7. [Azure Networking Lab from Jose Moreno][def7] 29 | 30 | 8. [Draw.io Network Diagrams: The Art of Possible in Azure Networking and the Why][def8] 31 | 9. [Azure Networking Security and Lab Templates][def9] 32 | 10. [Azure Networking Labs PDF][def10] 33 | 34 | This set of Azure Networking labs are simplified to demonstrate a single concept in each lab, using Azure portal or Azure CLI. Each lab has a lab diagram that provides information on the lab setup. Most labs build on each other so prior setup is expected. Please use the lab diagram as guidance if you are doing a specific lab out of order. 35 | 36 | 11. [A Journey through Azure Networking][def11] 37 | 38 | This repository contains a collection of core networking patterns starting from basic to advanced. The goal is to assist customers with picking the right pattern for their stage of the journey. Each pattern includes a summary, benefits and considerations, and diagrams providing examples of the patterns and what the route tables could look like. 39 | 40 | 12. [Azure PrivateLink DNS MicroHack][def12] 41 | 42 | This microhack will walk you through the steps to configure Azure PrivateLink DNS. You will learn how to configure Azure PrivateLink DNS to resolve private endpoints in a virtual network. You will also learn how to configure Azure PrivateLink DNS to resolve private endpoints in a virtual network that is peered to another virtual network. 43 | 13. [Hub and Spoke Network Lab (Terraform): Dual-region Hub and Spoke Topology][def13] 44 | 45 | This repo provides Terraform templates for a dual-region hub and spoke topology, connected to simulated on-prem datacenters. 46 | 47 | 14. [Private DNS Resolver with Forwarding Rules (Bicep)][def14] 48 | 49 | 15. [Private Link/Endpoint DNS Integration Resources][def23] 50 | 51 | 16. [Azure Virtual Network Manager Hands-on Lab][def25] 52 | 53 | 17. [vWAN and AVNM for Red/Blue Scenarios][def26] 54 | 18. [Azure Virtual WAN Labs by dmauser](https://github.com/dmauser/azure-virtualwan/tree/main) 55 | 19. [Global Secure Access With Microsoft Security Service Edge (SSE)](https://www.youtube.com/watch?v=W2wM774n6Nc) 56 | 20. [Azure Network Security - Use Azure Firewall as a DNS Proxy in a Hub and Spoke topology along with Private Endpoints](https://github.com/Azure/Azure-Network-Security/tree/master/Azure%20Firewall/Template%20-%20Azure%20Firewall%20as%20a%20DNS%20Proxy%20in%20Hub%20and%20Spoke%20topology) 57 | 21. [ESU enabled by Azure Arc, Network Considerations](https://github.com/adstuart/azure-arc-esu) 58 | 22. [AVS Enterprise-Scale Networking](https://github.com/Azure/Enterprise-Scale-for-AVS/tree/main) 59 | 60 | # Azure Networking Services 61 | 62 | Here is a list of Microsoft Azure services that can be used to demonstrate networking concepts in Azure. This list is not exhaustive, but it is a good starting point. 63 | 64 | - Azure Bastion 65 | - Azure DDoS Protection 66 | - Azure Firewall 67 | - Network Security Groups / Application Security Groups 68 | - Azure Private Link 69 | - Azure VPN 70 | - Azure Application Gateway 71 | - Azure Front Door 72 | - Azure Traffic Manager 73 | - Azure Network Watcher 74 | - Azure Virtual Network Manager 75 | - Network Security Checklist 76 | - Azure VirtualWAN 77 | 78 | # Microsoft Certification 79 | ## Learning Path 80 | Here is a link to [AZ-700: Microsoft Azure Networking Technologies][def16] learning path on Microsoft Learn. 81 | 82 | ## Exam 83 | Link to the [AZ-700][def17] exam. 84 | 85 | ## Study Guide 86 | [AZ-700 Study Guide][def18] should help you understand what to expect on the exam. It includes a summary of the topics the exam might cover and links to additional resources. 87 | 88 | 89 | # Noteable Articles 90 | A collection of weekly Networking articles and resources worth reading: 91 | 92 | ## March 2024 93 | - [Use Azure cloud native DNS resolver for split horizon][def30] 94 | 95 | ## December 2023 96 | - [Use a cloud native DNS resolver in Azure][def29] 97 | 98 | ## September 2023 99 | - [Using DNS in Azure IaaS][def28] 100 | 101 | ## March 2023 102 | - [Azure vWAN - A RED & BLUE puzzle solved with Virtual Network Manager][def22] 103 | - [Azure Network Security webinar: Content Inspection Using TLS Termination with Azure Firewall Premium][def24] 104 | - [Use traffic analytics to spot common azure network mistakes][def27] 105 | 106 | # Noteable YouTube Channels 107 | 108 | - [Adam Stuart][def19] 109 | 110 | - [John Savill][def20] 111 | 112 | - [Nehali Neogi][def21] 113 | 114 | 115 | 116 | [def1]: https://github.com/microsoft/MCW-Enterprise-class-networking 117 | [def2]: https://github.com/dawlysd/azure-dns-private-resolver-microhack 118 | [def3]: https://github.com/mddazure/dns-resolver-lab 119 | [def4]: https://github.com/Azure/terraform-azurerm-network/blob/main/examples/startup/main.tf 120 | [def5]: https://github.com/Azure/terraform-azurerm-vnet/tree/main/examples 121 | [def6]: https://github.com/mattfeltonma/azure-networking-patterns 122 | [def7]: https://github.com/erjosito/azure-networking-lab 123 | [def8]: https://github.com/nehalineogi/azure-networking 124 | [def9]: https://github.com/Azure/Azure-Network-Security/tree/master/Lab%20Templates 125 | [def10]: https://github.com/Azure/Azure-Network-Security/tree/master/Lab%20Templates 126 | [def11]: https://github.com/mattfeltonma/azure-network-journey 127 | [def12]: https://github.com/adstuart/azure-privatelink-dns-microhack 128 | [def13]: https://github.com/fguerri/hubandspokelab 129 | [def14]: https://github.com/mddazure/dns-resolver-lab 130 | [def16]: https://learn.microsoft.com/en-gb/training/paths/design-implement-microsoft-azure-networking-solutions-az-700/ 131 | [def17]: https://learn.microsoft.com/en-gb/certifications/exams/az-700 132 | [def18]: https://query.prod.cms.rt.microsoft.com/cms/api/am/binary/RE4PaHw 133 | [def19]: https://www.youtube.com/@AdamStuart1 134 | [def20]: https://www.youtube.com/@NTFAQGuy 135 | [def21]: https://www.youtube.com/@nehalineogi 136 | [def22]: https://github.com/Danieleg82/vWAN-and-AVNM-For-Red-Blue/blob/main/README.md 137 | [def23]: https://github.com/dmauser/PrivateLink 138 | [def24]: https://www.youtube.com/watch?v=A-hWyZZsFVY&t=1s&ab_channel=MicrosoftSecurityCommunity 139 | [def25]: https://github.com/adtork/Lab-Azure-Virtual-Network-Manager 140 | [def26]: https://github.com/Danieleg82/vWAN-and-AVNM-For-Red-Blue 141 | [def27]: https://autosysops.com/blog/use-traffic-analytics-to-spot-common-azure-network-mistakes 142 | [def28]: https://autosysops.com/blog/azure-dns-explained 143 | [def29]: https://autosysops.com/blog/cloud-native-dns-resolver-in-azure 144 | [def30]: https://autosysops.com/blog/use-azure-cloud-native-dns-resolver-for-split-horizon 145 | --------------------------------------------------------------------------------