When creating a service of type LoadBalancer in AKS, AKS will by default use a random public IP address and configure that on the AKS load balancer. You can however use a static self-managed public IP address as well. Don’t confuse this with using a public ip prefix for the outbound rule for AKS though. […]
Tag: networking
Automatically turning on diagnostic settings using Azure Policy
Earlier today, Camila Martins joined the latest episode Unsung Heroes of the Cloud. She did an amazing job explaining how to manage Azure diagnostics settings at scale: She did such a great job explaining things, that I actually want to try out what she showed. The goal of this blog post is to explore how […]
Block public load balancers on Azure Kubernetes Service using Azure policy
In this post, I’ll explain to you how you can use Azure Policy to restrict the creation of load balancers with a public IP in AKS using Azure policy. Azure policy is a way to ensure your Azure deployments follow your standards. Policies are a set of restrictive rules, that control what can be deployed […]
Using Terraform to create VNET service endpoints
Recently, I got a question on how to setup VNET service endpoints using Terraform. This blog post is a quick show and tell on how to set that up. For reference, a full example is available on my GitHub. Given it’s HashiConf at the time of writing, this seems like a good time to publish […]
Connect Azure Functions securely to Key Vault using VNET integration and Private Link
I did some work with a customer last week to integrate Functions with Key Vault without using the public IP of the Key Vault. This setup worked perfectly, although there were a couple of steps involved. To document those steps, I decided to write this post. In this post we’ll build a new Azure Function […]