This is a repo of cross solution network connectivity designs with Azure PaaS services, Azure Kubernetes Services(AKS) and on-premise connectivity. These designs are based on real world experiences working with partners,customers and cross solution CSAs in various ADS (Azure Design Sessions). This repo will contain downloadable artifacts like bicep automated deployments, architecture diagrams, postman collections and tools to test applications for various designs. Learn about tools of trades from various SME CSAs to validate designs,connectivity, view application and traffic flows.

• VXLAN with two linux hosts (As good as it gets!)
• BIRD Internet Routing Daemon (BGP Routing on linux) (Coming Soon...)
• Openswan VPN (IPsec Tunnels)
• The perfect NVA with linux
• IPtables and eBPF
• Cluster Networking - IPVLAN, MACVLAN, TUN/TAP drivers

• Docker Networking
  • Single Host
  • Multi Host
  • Bicep automated deployment (Coming soon...)
  • kind Cluster (Kubernetes In Docker)
• Basic/Kubenet Networking
• Advanced/Azure CNI Networking
• AKS Private Cluster
  • AKS Private Cluster with Azure Front Door
• Ingress Controllers
  • AKS Application Gateway Ingress Controller (AGIC)
  • Nginx Ingress controller
• AKS Egress with Azure firewall/NVA
• AKS Multiple Nodepool Design
• Core DNS and Azure DNS Integrations (Coming soon...)
• Kubernetes Network Model - Multus, Flannel,Weave, Calico, Cilium
• Kubernets Serivce Mesh (Istio, Linkerd and Consul)

• SQL Managed Instance
  • Single Region (database-services/README.md)
  • Multi region with Replication - DR Scenario (Coming Soon...)
  • Database failover with Application connectivity
• Azure Data Factory(ADF)
  • Managed VNET and Private Endpoints
  • Self hosted Integration Runtime (IR) In Azure
  • Self hosted Integration Runtime (IR) On Premises
• Azure SQL Database (PaaS Service)
• Azure Synapse
• OSS databases - mysql and postgres

• APIM Big Picture view
• Default mode
• External network mode
• Internal network mode
• Internal network mode with Azure Application Gateway
• APIM with Azure firewall/NVA
• APIM Identity - AAD and B2C Integration
• APIM Multi-region Architecture
• Self hosted gateway
• LetsEncrypt Certificates and APIM Custom Domain
• Azure Private DNS Zones integration
• Network Troubleshooting
• Download Postman Collection
• Download Multi-tab Visio and PDF of all APIM Networking Architectures

• Private Endpoint Integration
• Service Endpoint
• VNET Integration
• NAT Gateway Integration
• Azure Private DNS Zone Planning
• Azure App-Service with firewall for outbound traffic filtering (coming soon!)

• Bicep Automated deployments (Coming Soon...)
• Azure DevOps
• GitOps for Application deployment
• CI/CD pipelines using Github Actions

0. VSCode Extentions

1. Database

   • SQl Server Management Studio (SSMS)
   • Azure Data Management Studio

2. Networking

   • Microsoft Whiteboard
   • Linux Networking
   • Wireshark/tcpdump
   • dig
   • hping, tcptraceroute

3. Application

   • python
   • html
   • node.js
   • mysql

4. DevOps

   • github
   • Postman

1. Simple CRUD API Application
2. Simple http server
3. Simple 3-tier application for AKS

Special thank you to my collegues

• David O'Keefe
• Shaun Croucher
• Xavier Elizondo
• Heather Tze
• Daniel Mueser
• Sowmyan Soman Chullikkattil
• Mike Richter
• Sumit Sengupta
• Mike Shelton
• Tommy Falgout
• Devanshi Joshi