Category: Microsoft Azure

Azure OpenVPN Support

OpenVPN support in Azure VPN gateways

Today, the Azure networking team announced the General Availability (GA) of OpenVPN protocol in Azure VPN gateways for P2S connectivity. OpenVPN is an open-source software that implements a virtual private network (VPN) connectivity. Since OpenVPN is widely used in the industry, a lot of devices already have an OpenVPN client built-in. OpenVPN support for Azure VPN gateways should make it easy to set up new VPN connectivity to Azure virtual networks.

To use OpenVPN, you can now just simply select the tunnel type OpenVPN. You can find more information about how to set up an Azure VPN gateway on here.

We are announcing General Availability (GA) of OpenVPN protocol in Azure VPN gateways for P2S connectivity. OpenVPN is a popular open source VPN protocol supported in all major platforms (Windows, macOSX, Linux, Android) and available pre-installed on several WiFi routers and IOT devices. Adding OpenVPN protocol to Azure P2S VPN greatly expands our client footprint for TLS/SSL-based VPN customers and ecosystem.

– Ali Zaman, Senior Program Manager at Microsoft

To enable OpenVPN on your gateway you can run the following Azure PowerShell commands. Make sure that the gateway is already configured for point-to-site (IKEv2 or SSTP) before running the following commands:

$gw = Get-AzVirtualNetworkGateway -ResourceGroupName $rgname -name $name
Set-AzVirtualNetworkGateway -VirtualNetworkGateway $gw -VpnClientProtocol OpenVPN

You can find more information about OpenVPN support in Azure on Microsoft Docs:

Next to the Windows Server Azure Network Adapter, which allowed you to configure P2S VPN for Windows Server directly from Windows Admin Center, this is another step to make connectivity to Azure even easier. If you have any questions, please let me know in the comments.

If you want to learn more about Azure networking in general, check out the recording from my Microsoft Ignite The Tour session in Amsterdam, where I was speaking about the basics of building a Hybrid Connectivity with Microsoft Azure.



How to Install AzCopy

How to Install AzCopy for Azure Storage

AzCopy is a command-line tool to manage and copy blobs or files to or from a storage account. It also allows you to sync storage accounts and move files from Amazon S3 to Azure storage. In this blog post, I will cover how to install AzCopy on Windows, Linux, macOS, or in update the version in the Azure Cloud Shell.

AzCopy v10 is now generally available to all of our customers and provides higher throughput and more efficient data movement compared to the earlier version of AzCopy (v8). Version 10 also adds additional functionality like sync of blob storage accounts and much more.

Install AzCopy

You can get the latest version of AzCopy from here: Get started with AzCopy

Install AzCopy on Windows

To install AzCopy on Windows, you can run the following PowerShell script, or you can download the zip file and run it from where ever you want. This script will add the AzCopy folder location to your system path so that you can run the AzCopy command from anywhere.

 
#Download AzCopy
Invoke-WebRequest -Uri "https://aka.ms/downloadazcopy-v10-windows" -OutFile AzCopy.zip -UseBasicParsing
 
#Curl.exe option (Windows 10 Spring 2018 Update (or later))
curl.exe -L -o AzCopy.zip https://aka.ms/downloadazcopy-v10-windows
 
#Expand Archive
Expand-Archive ./AzCopy.zip ./AzCopy -Force
 
#Move AzCopy to the destination you want to store it
Get-ChildItem ./AzCopy/*/azcopy.exe | Move-Item -Destination "C:\Users\thmaure\AzCopy\AzCopy.exe"
 
#Add your AzCopy path to the Windows environment PATH (C:\Users\thmaure\AzCopy in this example), e.g., using PowerShell:
$userenv = [System.Environment]::GetEnvironmentVariable("Path", "User")
[System.Environment]::SetEnvironmentVariable("PATH", $userenv + ";C:\Users\thmaure\AzCopy", "User")

Install AzCopy on Linux

To install AzCopy on Linux, you can run the following shell script, or you can download the tar file and run it from where ever you want. This script will put the AzCopy executable into the /usr/bin folder so that you can run it from anywhere.

 
#Download AzCopy
wget https://aka.ms/downloadazcopy-v10-linux
 
#Expand Archive
tar -xvf downloadazcopy-v10-linux
 
#(Optional) Remove existing AzCopy version
sudo rm /usr/bin/azcopy
 
#Move AzCopy to the destination you want to store it
sudo cp ./azcopy_linux_amd64_*/azcopy /usr/bin/

Authorize with Azure Storage

When you start working with Azure Storage, you have two options to authorize against the Azure Storage. You can provide authorization credentials by using Azure Active Directory (AD), or by using a Shared Access Signature (SAS) token.

It also depends on which services you want to use.

Storage typeSupported method
Blob storageAzure AD and SAS
Blob storage (hierarchical namespace)Azure AD
File storageSAS only

Authenticate using Azure AD

To authenticate with AzCopy using Azure AD, you can use the following command

 
azcopy login

Authenticate using SAS token

To authenticate with AzCopy using a SAS token you can use this command as an example

 
azcopy cp "C:\local\path" "https://account.blob.core.windows.net/mycontainer1/?sv=2018-03-28&ss=bjqt&srt=sco&sp=rwddgcup&se=2019-05-01T05:01:17Z&st=2019-04-30T21:01:17Z&spr=https&sig=MGCXiyEzbtttkr3ewJIh2AR8KrghSy1DGM9ovN734bQF4%3D" --recursive=true

To make things easier you can use Azure PowerShell to generate the SAS token for you. I wrote a blog post on ITOPSTALK.com about how you can do that. You can get the SAS token using the following Azure PowerShell command. If you are running Linux or macOS, you can find on this blog post, how to install PowerShell 6.

 
Connect-AzAccount
Get-AzSubscription
 
$subscriptionId = "yourSubscriptionId"
$storageAccountRG = "demo-azcopy-rg"
$storageAccountName = "tomsaccount"
$storageContainerName = "images"
$localPath = "C:\temp\images"
 
Select-AzSubscription -SubscriptionId $SubscriptionId
 
$storageAccountKey = (Get-AzStorageAccountKey -ResourceGroupName $storageAccountRG -AccountName $storageAccountName).Value[0]
 
$destinationContext = New-AzStorageContext -StorageAccountName $storageAccountName -StorageAccountKey $storageAccountKey
 
$containerSASURI = New-AzStorageContainerSASToken -Context $destinationContext -ExpiryTime(get-date).AddSeconds(3600) -FullUri -Name $storageContainerName -Permission rw
 
azcopy copy $localPath $containerSASURI --recursive

To learn more about SAS tokens, check out Using shared access signatures (SAS).

I hope this helps you to install AzCopy and configure it. If you have any questions, feel free to leave a comment.



Experts Live Switzerland 2019

Speaking at Experts Live Switzerland 2019

I’m excited to be chosen again as a speaker at Experts Live Switzerland 2019. Experts Live Switzerland 2019 will take place on June 20 in the new Workspace Welle 7 in ​Bern Switzerland. Experts Live Switzerland is a one-day event with 17 sessions in three parallel tracks focusing on Microsoft Cloud, Datacenter and Workplace Management topics, with Microsoft MVPs, speakers from Microsoft and other industry experts.

I am happy to speak about Microsoft Azure Stack and how you can extend Azure to your locations. I will also give an overview of the newly announced Azure Stack HCI solutions.

Extend the Intelligent Cloud to the Edge with Azure Stack and Azure Stack HCI

Azure Stack allows you to extend Azure to your datacenter and run Azure Services under your terms. With Azure Stack HCI, the latest member in the Azure Stack family, we also offer a great hyper-converged infrastructure solution, with optional Azure connected services. Find out more about Azure Stack and Azure Stack HCI, how these solutions can help you to in your Hybrid Cloud strategy. Learn about the features and services you will get by offering Azure Stack to your customers and how you can build a true Hybrid Cloud experience.

Experts Live Switzerland 2019 is limited to only 200 attendees, so make sure you reserve your ticket right now! There will be a lot of other great sessions and a lot of experts from the Microsoft Cloud community. One of the main advantages of joining the Experts Live events is that you get this great networking opportunity to learn from each other.

Some more information about the conference:

  • 1-day event
  • In the heart of Switzerland (Bern)
  • Keynote about Azure Switzerland
  • 17 sessions
  • 3 parallel tracks
  • Top Community speakers
  • limited to 200 attendees
  • Partner booths in the expo hall
  • modern location
  • focusing on Microsoft Cloud Technology

I hope to see you all there!



Azure Saturday 2019 Munich

Speaking at the Azure Saturday 2019 in Munich

Azure Saturday Munich is a free community-focused Azure event dedicated to educating and engaging members of the local technical community. Azure Saturday draws upon the expertise of local Azure IT professionals, developers and solutions architects who come together to share their real-world experiences, lessons learned, best practices, and general knowledge with other like-minded individuals. With 30 speakers delivering 25 sessions in front of 500 attendees. I am happy that this year I will be speaking about the Azure Cloud Shell on the Azure Saturday 2019 on May 18 in Munich.

Mastering Azure using Cloud Shell, PowerShell and Bash!

Azure can be managed in many different ways. Learn your command line options like Azure PowerShell, Azure CLI and Cloud Shell to be more efficient in managing your Azure infrastructure. Become a hero on the shell to manage the cloud!

If you want to use your Saturday to learn about Azure, come by and I hope to see you there!



Cloud Shell Configure Port Web Preview

Preview Web Apps with Azure Cloud Shell Web Preview

If you have worked with the Azure Cloud Shell in the last couple of days, you might have seen a new button called Web Preview. The Azure Cloud Shell Web preview feature allows you to run web applications on the Cloud Shell container instance and preview them before you deploy them. You can run web applications that listen to HTTP requests on the Cloud Shell from port 1025-8079 and 8091-49151.

If you are running for example a .NET Core application in Cloud Shell, you can preview this to the Cloud Shell gateway.

I have created a short video tutorial to show you the Azure Cloud Shell Web preview feature.

How to use the Cloud Shell Web Preview

First you need to run your application, in my case I run a simple .NET Core web application. This also works with other applications which can run in Cloud Shell and can map a local port.

Cloud Shell Web Preview dotnet

 
dotnet run

By default, this will use port 5000. Now you can create a simple port mapping by clicking on the Web Preview button in Cloud Shell.

Cloud Shell Configure Web Preview

This will open up the configuration menu to create the port mapping, where you can select port to use from 1025-8079 and 8091-49151.

Cloud Shell Configure Port Web Preview

Now you can access the application running inside your Cloud Shell container through the gateway, to preview your application.

Web Preview

I hope this was helpful and gave you a quick overview about the Web Preview feature in Cloud Shell. If you have any questions, please let me know in the comments.

You can run Azure Cloud Shell from in the Azure Portal or directly from shell.azure.com.

If you want to learn more about Cloud Shell, check out my video about Mastering Azure using Cloud Shell.



Mastering Azure using Cloud Shell Session

Video: Mastering Azure using Cloud Shell, PowerShell and Bash!

At the NetWork 9 Conference in Neum and at the Global Azure Bootcamp in Switzerland, I presented my session about Mastering Azure using Cloud Shell. Since I got a lot of requests for the session to be online, I recorded my presentation and made it available for everyone. The presentation is a live demo and summary of my blog post “Mastering Azure with Cloud Shell“, which gives you an overview about the Cloud Shell and some of the advanced stuff you can do.

In the session you learn:

I hope you enjoy watching it and let me know what you think in the comments.



VMware on Azure - Azure VMware Solutions

Run your VMware natively on Azure with Azure VMware Solutions

Today the Microsoft Azure team announced the Azure VMware Solutions, which allow you to run VMware natively on Azure. VMware Solution on Azure by CloudSimple is a fully managed service that lets you run the VMware platform in Azure. This solution includes vSphere, vCenter, vSAN, NSX-T, and similar tools. VMware environment runs natively on Azure Bare Metal infrastructure, on Azure cloud locations. The service includes all the features required to consume the VMware platforms efficiently and securely. The solution is delivered by Microsoft, verified by VMware, and run on Azure infrastructure.

This allows you to move or extend your on-premises VMware environment to Microsoft Azure. You can seamlessly move VMware workloads to Azure and integrate with your VMware management environment, using the same and existing management tools. This gives you time to modernize your workloads with native Azure services. This extends the Microsoft hybrid cloud offerings for products like Azure Stack, Azure Stack HCI, and more.

VMware Solution on Azure by CloudSimple

VMware on Azure - Azure VMware Solutions

Features

  • On-demand self-service provisioning of VMware cloud environments. Ability to add and remove capacity on demand
  • VMware platform deployment, upgrade, management plane backup, health/capacity monitoring, alerting, troubleshooting, and remediation.
  • Underlay networking services required to enable VMware, including L2/L3 services and firewall rule management.
  • Edge-type networking services, including VPN, Public IP, and Internet Gateways. These edge services run on Azure and carry the corresponding security and DDoS protection of Azure.
  • Capacity reservation to lower costs.
  • High-speed, low-latency connectivity to Azure and on-premises.
  • Solution architectures for customers to consume Azure services in an integrated fashion, take advantage of this unique “VMware cloud in a public cloud” architecture. These Azure services include Azure AD, storage,
  • application gateways, and others.
  • Infrastructure is fully dedicated to you and is physically isolated from the infrastructure of other customers.
  • Management features such as activity management, usage, billing/metering, and user management.
  • 24×7 customer support.

(Source Microsoft Docs)

This will open a couple of crucial scenarios for our customers.

  • Data Center retirement or migration – If you need to retire your datacenter and you need a fast and straightforward way to move your existing VMware workloads, Azure is a great place to host these workloads without rearchitecting them. This will give you time to modernize your applications in the mid and long term
  • Expansion on demand – If you are running your VMware environment and you need more capacity on demand, you can extend it to Azure.
  • Disaster Recovery – You can use Azure as your recovery site for your on-premises VMware workloads
  • Virtual Desktops – If you are running a VDI solution on top of VMware, you are also able to host the infrastructure in Azure.
  • Hosting High-Performance Applications – The CloudSimple solution provides a hyper-converged architecture designed to run high-performance workloads
  • Hybrid Cloud – It opens up scenarios for companies to run hybrid cloud scenarios, without the need to switch all your tools and to rearchitect your workloads

If you want to know more about VMware Solution on Azure by CloudSimple, you can check out the Microsoft docs.

Integration into Azure

Create VM in the Azure Portal

The VMware solutions on Azure, are not just isolated from the rest of your Azure environment. VMware on Azure by CloudSimple is integrated into Azure, which means it allows you to leverage Azure Express Route and even the Azure Resource Manager to deploy virtual machines on your VMware host running in Azure. This will enable you to create new virtual machines from your VMware administration tools like vCenter, but also within the Azure Portal or using Azure Resource Manager templates.

Pricing

In terms of pricing, you will be paying per VMware node in Azure, and you will get charged by Microsoft for it. You can use your existing Azure Enterprise Agreement precommitments for it.

We have two different instances available depending on the size you need, the CS28 and the larger CS36 nodes. These include CPU cores, RAM, NVME Cache, and useable all-flash storage. The minimum of nodes you will need is three instances per cluster. You can also make use of the Reserved options for 1 or 3 years to save up to 50%. You can also use the Azure Hybrid Benefit to use your existing Windows Server licenses, and you can also make use of the Extended Security Update options for Windows Server 2008 / 2008 R2 and SQL Server 2008 / 2008 R2.

Azure CloudSimple Pricing

The storage pricing is the useable storage in vSAN. If you want to know more about pricing, check out the Azure pricing page for Azure VMware Solution by CloudSimple.

What are your thoughts about these announcements? Let me know in the comments!