IT Techy Minds -- We run and explore the IT

Azure Services: offered Compute, Storage, and Identity Under Azure Umbrella

Hello It Geeks

Just to revise the Azure offered Services. Here is list of Services which are offered under umbrella.

Virtual Machines. Create Windows® and Linux virtual machines from pre-defined templates, or deploy your own custom server images in the cloud.

Virtual Machine Scale Sets. Deploy Virtual Machine Scale Sets using Azure Resource Manager templates.

Virtual Networks. Provision networks to connect your virtual machines, PaaS cloud services, and on-premises infrastructure.

Cloud Services. Define multi-tier PaaS cloud services that you can deploy and manage on Microsoft Azure.

Load Balancer. Quickly create highly-available and scalable applications, with support for the most common networking protocols.

VPN Gateway. Connect on-premises networks to Azure through Site-to-Site VPNs using secure protocols like IPSec and IKE.

Azure DNS. Use Azure DNS to host your Domain Name System (DNS) domains in Azure.

ExpressRoute. Create a dedicated high-speed connection from your on-premises data center to Azure.

Traffic Manager. Implement load-balancing for high scalability and availability.

Network Watcher. Monitor and diagnose networking issues without logging in to your virtual machines (VMs) using Network Watcher.

Storage and Backup Services

Azure Storage. Store data in files, binary large objects (BLOBs), tables, and queues.

Data Lake Store. Use as a hyper scale repository for big data analytics workloads.

StorSimple. Consolidate storage infrastructure, automate data management across the enterprise, accelerate disaster recovery, and improve compliance.

Backup. Use Azure as a backup destination for your on-premises servers.

Azure Site Recovery. Manage complete site failover for on-premises and Azure private cloud infrastructures.

Security and Identity Services

Security Center. Use Azure Security Center to get a central view of the security state of all of your Azure resources.

Key Vault. Create and import encryption keys, reduce latency with cloud scale and global redundancy, and simplify and automate tasks for SSL/TLS certificates.

Azure Active Directory. Integrate your corporate directory with cloud services for a single sign on (SSO) solution.

Azure Active Directory Domain Services. Join Azure virtual machines to a domain without domain controllers.

Azure Multi-Factor Authentication. Implement additional security measures in your applications to verify user identity.

The more updated details can be read at https://azure.microsoft.com/en-us/features/azure-portal/

Login to trail portal.

Thanks with Regards

Amit Kumar Gupta

CCA in XenApp/XenDesktop/XenServer,Google Cloud Architect, MCSE, ITIL, Vmware Certified

Microsoft certified - Planning for Security Incident response.

https://www.linkedin.com/in/amit-kumar-gupta-5321a527/

Details on Microsoft Assessment and Planning Toolkit (MAP)

Hi Admin

Here is some details on Microsoft Assessment and Planning Toolkit (MAP)

The Microsoft Assessment and Planning Toolkit (MAP) is a solution accelerator that analyzes the inventory of an organization’s server infrastructure, performs an assessment, and then creates reports that you can use for upgrade and migration plans.

MAP performs four key functions: discovery and inventory of computers and applications, hardware and software migration readiness assessments, software usage tracking, and capacity planning for virtualization, public and private cloud migration.

MAP will answer questions like: Which computer can run Windows Server 2016? Which computers cannot run Windows Server 2016 and what upgrades are needed? Which current physical servers are the best candidates for virtualization and the hosts on which you should place those virtual machines?

MS Video Link on Tool.

 

Content is copyright at MS.

Thanks

CCA in XenApp/XenDesktop/XenServer,Google Cloud Architect, MCSE, ITIL, Vmware Certified

Microsoft certified - Planning for Security Incident response.

https://www.linkedin.com/in/amit-kumar-gupta-5321a527/

Microsoft has paused rollout of 1809 release for Win10

Hi Users

Microsoft has paused the rollout of 1809 release due to some known issue.

 

https://support.microsoft.com/en-us/help/4464619/windows-10-update-history?irgwc=1&OCID=AID681541_aff_7792_1246483&tduid=(ir_c1eae9e6N899378436793d3aac269f4b6)(7792)(1246483)((cc460d23081e64543088c8fc6cdf9dd9)(190946)(1816154)(jn1jwi5pec00ypei05q12)())(cc460d23081e64543088c8fc6cdf9dd9)&irclickid=c1eae9e6N899378436793d3aac269f4b6

 

https://www.zdnet.com/article/microsoft-pulls-windows-10-october-update-version-1809/

 

Keep eye on latest news from MS.

 

Thanks

Amit Gupta

NetScaler Part 5- Advanced Load balancing Techniques

Hi Citrix Administrators

In this section, we will learn about Advanced load balancing concepts which include.

1. BackUP Vserver and URL Redirections

2. Compression

3. Global Server load balancing (GSLB)

 

BackUP Vserver and URL Redirections:- There are two techniques through which NS load balanced services can failover to another VIP or URL based on the event.

URL Redirection:- The site or services URL will be redirected to secondary URL in case primary URL hosted VServer fails.

Backup VServer:- The backup server load balancing will allow redirecting the user request to another existing VIP in case of down or overload.

The backup Vserver will take more priority if you have both configured.

Steps to create backup Server is quite simple like creating VIP and adding members to series.

undefinedwe can define the URL redirection or backup server to handle the production VIP failover or load mgmt.

Compression:- Compression helps in reducing the size of the packet to process further.

There are 2 Major factors for using compression:-

1. Reduced the load on backend Servers

2. Conserves Bandwidth

There are multiple types of content which can be compressed:- 

HTML, XML, CSS, MS Excel, word, powerpoint, plain and Rich text.

There will be no compression happen on already compressed data like.JPG and others. compression is policy based and can be deployed on Vserver or Globally.

Compression is dependent on Browser used by client machine and what kind of compression is supported.

GZIP or Deflate - GZIP and Deflate has the same algorithm and depends on browser compatibility. deflate is little fast compression techniques in comparison to GZIP.

By default, compression is disabled on NS so you need to enable it 1st to use it.

undefined

How to change the compression Quantum size-

undefined 

 How to enable compression on existing VServer:-

undefined

How to Create Policy:- The policies can be created from the policy option in HTTP Compression.

undefined

We will publish another blog about types of policy as its different deep topic.

Global site load Balancing:- GSLB works as Distributing of incoming Traffic between geographical regions hosting the same application through VServers. it uses the same load balancing method as described in previous blogs.

undefined

The GSLB work on DNS query and client IP Range. one of the Netscaler take the role of Authoritative DNS server 

Example - one client is trying to connect to GSLB based site and query reaches to one of the Authoritative NEtscaler DNS which decides redirect the incoming connection to proper NEtScaler VIP which are region wise close to Client IP range.

There are different types of GSLB topology. please refer to Citrix docs for more details which explains in more deep.

1. Active-Active Site Deployment - https://docs.citrix.com/en-us/netscaler/11-1/gslb/gslb-deployment-types/active-active-site-deployment.html

2. Active-Passive Site Deployment - https://docs.citrix.com/en-us/netscaler/11-1/gslb/gslb-deployment-types/active-passive-site-deployment.html

3. Parent-Child Topology Deployment using the MEP Protocol- https://docs.citrix.com/en-us/netscaler/11-1/gslb/gslb-deployment-types/parent-child-topology-deployment.html

In Next blog , we will read with how to configure SSL offload and NS Citrix Access Gateway.

Thanks with Regards

Amit Kumar Gupta

CCA in XenApp/XenDesktop/XenServer,Google Cloud Architect, MCSE, ITIL, Vmware Certified

Microsoft certified - Planning for Security Incident response.

https://www.linkedin.com/in/amit-kumar-gupta-5321a527/

 

 

 

 

 

NetScaler Part 4- Configure Load Balancing and its settings

Hello,

In this section, we will learn how to configure load balancing in NetScaler for Web Services and other balancing methods.

To configure load balancing for Web Servers, we need to have 2 Web Server which will be load balanced on NetScaler.

Method of Load Balancing 

1. Least Connection;- This is default method Netscaler uses in load balancing and maintain the equal number of Active connections on backend servers. it works with TCP, HTTP, and HTTPS protocols. 

2. Round robin:- It method send the connection in sequential order, in case of 4 WebServer.

1st incoming connection = Goto Web Server 1

2nd incoming connection = Goto Web Server 2

3rd incoming connection = Goto Web Server 3

4th incoming connection = Goto Web Server 4

5th incoming connection = Goto Web Server 1 and carry on in sequence.

it works on the same protocol as Least connection but not more efficient in load balancing as it does not take into account of backend Active connections.

3. Least Response time Method (LRTM):- It sends the incoming connection to backend Server which response quickly back to Netscaler. it only works with HTTP and HTTPs. this method is more efficient if you have slow and fast response server in the pool and want to have most connection to fast working Servers.

4. Hashing method:- it more efficient method of load balancing as Client request get backend server hash attached and every time any request is made from the same client in particular time window and will always connection back to same backend Server. the connections are distributed randomly in this method.

5. Least Bandwidth:- in this method, NetScaler sense the bandwidth connectivity for backend Servers and send the inputs connection accordingly to most bandwidth backend Server 1st.

6. Least Packets:- it works on the number of packets 

7. Custom:- in this method, Netscaler gather the backend Server information via SNMP Trap and send the connection to better performance Server (based on memory, CPU or etc).

 

Step to configure load balancing:-

1. Please ensure Load balancing feature is enabled. 

undefined

2. Select both and click ok

3. Create Service 

undefined

Create Service for all the backend web Server

Web Server T-1 - 192.168.1.2

Web Server T-2 - 192.168.1.3

 

Web Server T-3 - 192.168.1.4

Web Server T-4 - 192.168.1.5

4. Create Virtual Server which will receive the incoming connection and forward the traffic to backend Servers.

WebServer-LB 192.168.1.10, port 80 and HTTP protocol 

Click ADD Virtual Server --> Goto Services tab --> Select all the 4 available Services there.

5. Goto Method and connection Tab -

6. Select the connection method based on requirement.

7. Click Create and Save the configuration

LB VIP is Created now. Test the website load balancing by browsing the IP 192.168.1.10 over the browser and the traffic will be LB based on defined methods.

 

Persistence Type:- there are many persistence methods in NS and important for a web application where the requirement is to connect to the same Server where the 1st session was established for particular client.

Method Type :-

Destination IP:- It maintains the table and all the connection from this client will go to previous backend Server

SSL Session ID:- Not more used as different-2 browser uses a different method of SSL ID and can cause problem in NS 

HTTP Cookie: The Cookie is added to each request and sends to client browser so next time incoming request are checked based on Cookie received and connect to same previous backend Server

Source IP: when client ip is used to decide the backend Server connection and confusing in case of NAtting or proxy environment where all the client requests are reflecting one IP Address.

URL Passive:- The URL details are coming with incoming connection and connect to matching URL backend Server.

User-defined rules:- it depends on what value is defined in the configuration, browser version, name, cookie value ..etc.

Persistence types are protocol dependent and some methods are time limited.

Select the Persistence Type based on requirements.

undefined

 Thanks for reading the content .

 

Amit Kumar Gupta

CCA in XenApp/XenDesktop/XenServer,Google Cloud Architect, MCSE, ITIL, Vmware Certified

Microsoft certified - Planning for Security Incident response.

https://www.linkedin.com/in/amit-kumar-gupta-5321a527/ 

 

 

 

 

 

 

 

 

Newer posts → Home ← Older posts