- Azure ARM , networking and GLOBAL Infrastructure (2017-10-01)
- Securing Resources and Azure Security (2017-10-01)
- Design an application storage and data access strategy (2017-10-01)
- Design advanced applications (2017-10-01)
- Design Azure Web and Mobile Apps (2017-10-01)
- Design a management, monitoring, and business continuity strategy (2017-10-01)
- Architect an Azure Compute infrastructure (2017-10-01)
Designing Web Apps
App Service Vs Cloud Service Vs Virtual Machine
Scalable Web Apps,
Mobile Apps, API Apps, and Logic Apps for any device
scalable n-tier cloud apps with more control of the OS
and Linux VMs with complete control of the OS
Designing Web AppsApp Service Vs Cloud Service Vs Virtual Machine
Scalable Web Apps, Mobile Apps, API Apps, and Logic Apps for any device
Highly available, scalable n-tier cloud apps with more control of the OS
Customized Windows and Linux VMs with complete control of the OS
Azure Web Apps
- Web Apps are available in 5 tiers: free/shared/basic/standard/premium.
- web/mobile/API apps (10/100/unlimited/unlimited/unlimited),
- logic apps (10/10/10/20 per core/20 per core,
- integration options (dev/test up to basic;
- Standard connectors for Standard;
- Premium Connectors and BizTalk Services for premium),
- disk space (1GB/1GB/10GB/50GB/500GB),
- maximum instances (-/-/3/10/50),
- App Service environments (Premium only),
- SLA (Free/shared none; Basic 99.9; Standard and Premium 99.95%)
- Resource Group and Web Hosting Plan are used to group websites and other resources in a single view; can also add databases and other resources; deleting a resource group will delete all of the resources in it.
- Instance types:
- Free F1.
- Shared D1.
- Basic B1-B3 1 core, 1.75GB RAM, 10GB storage x2 cores and RAM (2/3.5; 4/7) – VMs running web apps.
- Standard S1-S3 same cores and RAM but more storage (50GB).
- Premium P1-P4 same again but 500GB storage (P4 is 8 cores, 14GB RAM).
- Other things to configure:
- .NET Framework version.
- PHP version (or off).
- Java version (or off) – use web container version to chose between Tomcat and Jetty; enabling Java disables .NET, PHP and Python.
- Python version (or off).
- Scale web apps
- by moving up plans: Free-Shared-Basic-Standard – changes apply in seconds and affect all websites in web hosting plan. No real scaling for Free or Shared plans. Basic can change instance size and count. Standard can autoscale based on schedule or CPU – min/max instances (checked every 5 mins).
- Scale database separately.
- SSL certificates – can add own custom certs (2 options – server name indication with multiple SSL certs on a single VM; or IP SSL for older browsers but only one SSL cert for IP address).
- Site extensions – no RDP access to the VM, so tools for website: Visual Studio Online for viewing code or phpMyAdmin.
- allow running programs or scripts on website (like cron in Linux or scheduled task in Windows) – one time, schedules or recurring.
- Can use .cmd, .bat or .exe; .ps1, .sh., php, .py, .js
- Development Environment
- Visual Studio 2013 plus support one click deployment
- Deployment pipeline can be automated and can flip environments when move from staging to production (flips virtual IP). Can flip back if there are issues.
- Azure Application Insight is used for debugging for some extra fee.
- You can connect to Console session of Web App Host using simple commend line environment provided by azure
- Debugger can be attached remotely
- KUDO can be used for Web based Debugging
- it provide a page consistent of
- Environment Information
- Process Explorer
- Site Extension
- Diagnostics Dump
- Log Stream
- WebJob Dashboard
- Web Hooks
- Download Deployment Scripts
- Can be used to initiate Powershell Session to host
- Supported Language
- .Net , Java , Node.Js, PHP, Python
- Monitoring web app
- Monitoring is supported via metrics in the portal.
Azure Scaling Web Apps
- Supported push button in scale up and scale out mode
Azure Scaling Database Tier
- Database load are measured based on (Database transaction units) DTU
- Azure SQL Support GEO Replication
- Standard replication - Disaster recovery only , Deprecated in April 2017
- Active Replication - Read Replicas
- If replication is not required the upward scale can be performed i.e. DTU increases
- DTU is charged based on allocation
- Elastic Database Pool
- It is way to allocate shred DTU to a group of databases to that sudden burst of load can be handled without upgrading the database tier.
- It is like setting up burst mood that provide predictable billing
- it is region specific and once server can be part of multiple pool
- Database Sharding
- This is one of the ways for horizontal scaling
- Split the database in ti multiple small one
- Split Marge tool can help in this
- Mix of Database Tier can be used
- Need Configure App logic to use appropriate instance
- Other than performance it can also be used for compliance purpose across the region
Web Application Deployment
- Azure Site Extensions
- Can add available third party component to application such as logging
- Also allow to create your own extension
- Deployment Option
- Any FTP Client is Support
- Do not Support version control
- Support Git , One Drive , Drop Box etc
- Version control , restore , web-hooks, Content Sync
- Local Git supported
- Web Deploy
- Direct Visual Studio Deploy
- Support Diff only Deployment
- Binaries are pre built before deploy
- Package are ZIP includes all codes and dependencies
- App Service Plan
- Allows apps to share features and capacity
- Also to allocate exclusive hosting VM capacity to apps
- There are five pricing tiers free to premium
- Pricing tier can be changed any time
- Allow changing number of VMs
- Apps and App service must me in same subscription and and geographic location
- One Web App can only be associated with one app service plan
- App can be moved to different plan
- To move web App to other region you have to clone it
- Resource Group
- Logical grouping of resources
- Works as subset of resources for an application
- Allows grouping of resources for billing and management purpose
- One resource can only belongs to single RG
- resources can be in separate region
- Deployment template can be created for resource group
High Availability Web Apps
- Azure Traffic Manager
- Controls distribution of traffic to endpoints including cloud services , websites external sites etc
- Support Three Load Balancing models
- Round Robin
Business Continuity Plan
- Update with Minimal Downtime
- Azure Provide Deployment Slot that actually Swapping of Production IP Address
- Backup and restore
- Builtin feature of Azure
- Support Up to 10 GB (Website + DB)
- backup include -
- Web Apps Configuration
- Web App File Contents
- Azure Database (SQL or My SQL)
- Manual and schedule both are supported
- Output of back is
- XML Config File
- ZIP file with Site and DB contents in BAKPAK file
- BAKPAK file can be restored locally /on prem
- Backup support file and folder filters
- Differential backup and parts backup is supported
- Restoring Web Apps
- Database restore can be don on same production slot or new one
- Swap can be used in case of restore to new slot (recommended )
Azure Cloud Services
Cloud Services is an example of Platform-as-a-Service (PaaS). Like App Service, this technology is designed to support applications that are scalable, reliable, and cheap to operate. Just like an App Service is hosted on VMs, so too are Cloud Services, however, you have more control over the VMs. You can install your own software on Cloud Service VMs and you can remote into them.
- Cloud Service roles
- Web role
- Automatically deploys and hosts your app through IIS.
- Worker role
- Does not use IIS and runs your app standalone.For more complex, multi-tier apps.
- for back-end (synchronous, perpetual tasks – independent of user interaction; uses polling, listening or third party process patterns).
- Upload code and Azure manages infrastructure (provisioning, load balancing, availability, monitoring, patch management, updates, hardware failures…)
- 99.95% SLA (min 2 role machines)
- Auto-scale based on CPU or queue.
- Communicate via internal endpoints, Azure storage queues, Azure Service Bus (pub/sub model – service bus creates a topic, published by web role and worker role subscriber is notified).
- Availability: fault domain (physical – power, network, etc.) – cannot control but can programmatically query to find out which domain a service is running in. In ASM, normally 0 or 1. ASM automatically distributes VMs across fault domains.
- Upgrade domain (logical – services stopped one domain at a time) – default is 5, can be changed.
- If have web and worker roles, automatically placed in Availability set.
- Azure Service Definition Schema (.csdef file) has definitions for cloud service (number of web/worker roles, communications, etc.), service endpoints, config for the service – changes required restart of services.
- Azure Service Configuration Schema (.cscfg file) runtime components, number of VMs per web/worker role and size etc. – changes do not require service restart.
- Deployment pipeline as for Web Apps.
Design Mobile Application
Azure Mobile Services (Mobile Data Access)
- Offers cloud based storage for mobile apps
- support both Node or .Net
- Support Proxy (Data Classes) for SQL Data Base , technically it create web-service
- Support Many different data source like Azure SQL, Blob , Table and Mongo DB
- Support Hybrid Service
- Support Social providers for authentication
- Support Several Push Notification Services
- Windows Push Notification Services (WNS)
- Microsoft Push Notification Service (MPNS)
- Apple Push Notification Service (APNS)
- Google Content Notification
- Azure Notification Hub
- Also support Git integration
- Can be consumed from cross platform client by adding Mobile Service Client Library reference in you project.
- Offline Sync is supported via SQL Lite
- Mobile service support custom coding and create more feature to API
- Mobile Service Security
- Authorization has four modes
- Application Key Required
- Everyone - public
- Authenticated user (ID +Token)
- Admin and Other Script (Need Master key from mobile service)
- Authentication provider
- Azure AD
- MS Account
- More than one identity provider are supported by mobile service
- Log in request made to LoginAsycn end point that in turn provide User variable containing claims like user level , and user id
- Azure provide and AD Authentication Library as abstraction layer for client apps that support featured like token cache and automatic token refresh
Azure Application Notification Services
- There are two way to push a notification on device
- Push Notification Service (discussed above)
- Notification services are specific to Device provider
- Notification Hub
- Notification Hub is latest approach to implement push service
- Fully Managed and highly scalable service
- it is abstraction over push notification service and vendor independent
- Allow collect data back from devices like GPS location
- Support Message Template
Azure Application Services
- Azure offer various application service some of them are renamed and some new
- Web App , Mobile Apps, BizTalk API apps, Api Apps, Logic App (Workflow) are key name to highlight
- App Service Plan
- Service belongs to five pricing tier called , Free, Shared , Basic , Standard , Premium
- Only one service plan can be associated at any time
- Azure API Apps
- Builtin Support for swagger
- automatic generation of client code
- CORS support out of the box
- Support for azure logic apps
- Support built in access level
- Internal , Public , and Public Authenticated
- Support Scale Up and Out
- Azure Ad is used for authentication
- Support express and Advance mode of integration
- Advance mode requires AD App Client ID and Issues URI
- WebJobs Apps
- Allow execution of script on host
- Deployed via Zip, FTP or IDEs
- an run on demand or scheduled
Azure Website and Azure VNETs
- Azure website can not be placed in VNET but can access resources on VNET through a special VPN Configuration
- VNET Can be used for On Premise access and support boath TCP and UDP
- In order website can access VNET must have
- Dynamic Gateway
- Point to Site Enabled
- V1 VNET is support not classic VNET
- Website Must use VNET DNS server
- Same VNET can be used by multiple APPS
- Requires STD or Premium pricing plan
- Azure Website and VNET for not support Drive Mounting , AD Integration , NetBois, Express Route
- Hybrid Connection Manager (HCM) can be used to allow Website/VPN access via Express Route
- HCM Can only be installed on Windows
- Max Five Instances of HCM
- Only Support TCP (No UDP)
- Use with express route
Cloud Services Vs Standalone Cloud Services
- It is one of the way to organised resources on Azure
- Each Cloud Service has a unique public DNS and IP address
- Cloud Service without virtual network is called standalone
- VMs in standalone cloud service must communicate over the intenet
- Standalone cloud service can not participate in VPN
- Cloud Service are part of classic deployment that is being replaced with Azure Resource Manager that actually uses Resource Group
- Web Apps Vs IAAS VM Vs Cloud Service -TBD
really very informative!! very useful to the users. Get touch with Azure Online Training HyderabadReplyDelete