microsoft networking academy€¦ · 2017-04-14  · •azure networking fundamentals (10 minutes)...

Microsoft Networking Academywith the C+E Global Black Belts

Olivier Martin (@omartin) – Networking TSP GBB

Kevin Lopez (@kevlopez) – ER Partner Sales Executive GBB

Jaime Schmidtke (@jaimesc) – ER Partner Sales Executive GBB

Eddie Villalba (@edvilla) – Networking and Open Source TSP GBB

Bryan Woodworth (@brwoodwo) – Networking TSP GBB

Before we get started

• Welcome customers and partners!!!

• Material is public information No NDA info here.

• Use the IM window for questions.

• Sessions are recorded and posted here :

https://aka.ms/mna

• Still every 2 weeks… but !

• Introductory Sessions (200 level)• Azure Networking Fundamentals (10 minutes)

• Microsoft Guest of the week (15-20 minutes)

• Partner Spotlight of the week (15-20 minutes)

• Q&A (10 minutes)

• Deep Dive Sessions (300-400 level)• Short introduction (5 minutes)

• Deeper dive topic of the week (35-45 minutes)

• Q&A (10 minutes)

• Email GBB-ANF@microsoft.com to receive detailed schedules for the upcoming sessions!

• Available on Channel 9!

Microsoft Networking Academy

• Introduction!

•Polls... We want to learn about you!

•Deep dive on Azure Traffic Manager with Bryan Woodworth!

•Open Q&A

Episode #6 – April 14th 2017

Azure Traffic ManagerBryan Woodworth

Global Black Belt – Cloud Infrastructure – Azure Networking

What is the Azure Traffic Manager?

Microsoft’s Global Application Delivery Solution

Combines end-to-end application health checks, intelligent DNS, and global load balancing into a single platform

Supports priority, weighted, performance, and geographic routing load balancing methods

Works with any DNS endpoint – your datacenter, your office, Azure, and even other clouds.

How can Azure Traffic Manager help my apps and services?

Improve availability of critical applications HA or DR designs – “N+M”

Improve responsiveness for applications Observed latency or geographic proximity to LDNS resolver

Seamless migration from on-prem to Cloud Control the ratio of traffic as your compute moves

Distribute traffic to large, complex deployments Supports nested profiles for comprehensive designs

Increase security and enforce compliance Global routing allows for Geo-Fencing of federated zones.

Perform server maintenance without downtime Disable profiles or endpoints to control staging

Is Azure Traffic Manager secure?

A: YES!!

Runs on two global Anycast rings.

Always two NS records that lead to the closest server.

Our Anycast rings are resilient to DNS DDOS

Hackers cannot be sure of which endpoints they are targeting

If the ring is up, you are up!

Protected by Microsoft's anti-DDOS platform

How does the Azure Traffic Manager Work?

LDNS

Improve Availability of Critical ApplicationsExample:Priority LB

Improve Responsiveness of Applications :Performance

Combine On-prem and Cloud AppsExample:Weighted

Large/complex environments and complianceExample:Global + Priority +Geo-Fencing

More about nested profilesand global routing

Nesting can go up to 10 levels deep (no loops)

Nested endpoint types can be any DNS endpoint or another profile

Total child health status rolls up to parent profile Child supports “minimum member up” setting

Geographic Routing benefits from child profiles Regions can be only be mapped to a single endpoint

If this endpoint fails, traffic manager will still attempt to service it

Use a nested profile with more than one endpoint to ensure service

Geographic Routing will always pick the most specific endpoint if queries come from overlapping regions

For “Europe” and “Ireland” endpoints, queries from Ireland will always go to “Ireland” (never “Europe”)

How do health checks work?

HTTP and HTTPS (:80 and :443) SSL/TLS handshake supported but server certificate is

ignored

Monitor requires /path/to/file

Monitor requires 200 OK. 301/302/4XX not supported.

Interval is 30 seconds, timeout is 10 seconds, and attempts is 4

All endpoints of a parent profile employ the same monitor For different monitor content or path, use a child profile!

Disabling the profile leads to NXDOMIAN for all endpoints

Disabling the endpoint allows LB to next best endpoint (if applicable)

How does pricing work?

Utility billing model based on total queries and total health probes per month

Utility rates drop each month after 1 billion queries are reached

Health probes to Azure endpoints are cheaper than non-Azure endpoints

https://azure.microsoft.com/en-us/pricing/details/traffic-manager/

Where can I learn more about Traffic Manager?

https://docs.microsoft.com/en-us/azure/traffic-manager/index

Questions?

Open Q&A

Thank you!Session recording will be posted shortly herehttp://aka.ms/MNA