Hello everyone,
Managing VM images efficiently is an important part of operating large-scale Azure environments. Many organizations rely on Azure Compute Gallery to distribute standardized virtual machine images across regions, subscriptions, and environments.
To improve operational safety, Azure now includes a Soft Delete capability for Azure Compute Gallery, helping protect image repositories from accidental deletion.
Continue reading “Azure Compute Gallery Soft Delete feature overview”
Hello everyone,
Managing network security across multiple Azure environments can quickly become complex. As organizations scale their cloud infrastructure, maintaining visibility over firewalls, network security groups, routing rules, and other controls becomes increasingly important.
To address this challenge, Microsoft introduced the Azure Network Security Hub, a centralized experience designed to simplify how security configurations are monitored and managed across Azure networking resources.
Continue reading “Overview of the new Azure Network Security Hub experience”
In modern cloud architectures, securing application traffic is not only about protecting the connection between users and the entry point of the application. It is equally important to ensure that communication between application gateways and backend services is also properly validated and encrypted.
Azure Application Gateway provides several capabilities to enforce TLS validation when communicating with backend services. These controls help organizations maintain strong security practices by verifying backend identities and preventing potential man-in-the-middle scenarios.
Continue reading “Backend TLS validation controls in Azure Application Gateway explained”
IP address planning is one of the most important aspects of designing scalable network architectures in Azure. While virtual networks provide flexibility in defining address spaces, subnet design can become challenging as environments grow and requirements evolve.
A capability that helps address this challenge is the ability to assign multiple address prefixes to a single subnet. This feature introduces new design possibilities for managing IP space more efficiently without requiring disruptive changes to existing environments.
Continue reading “Design patterns using multiple address prefixes for Azure VNet subnets”