September 7, 2025
Random News

Paradise Solution Newspaper

Best News Website

Author Info

Author Name

Find Me On

Trending News

Creating and Configuring Virtual Networks in Azure: A Step-by-Step Guide

psitbdUser07 mins




Introduction

Every cloud application begins with a secure and scalable network foundation. In Azure, Virtual Networks (VNets) provide the backbone for connecting applications, databases, and security appliances while maintaining private, isolated environments.

In this guide, we’ll walk through how to:

  • Create hub-and-spoke virtual networks for a web app.
  • Add subnets for frontend, backend, and firewall workloads.
  • Configure secure VNet peering to enable private communication.

By the end, you’ll know how to design a simple but production-ready network architecture in Azure.



Skilling Objectives

You will learn how to:

  • Deploy virtual networks and subnets in Azure.
  • Set up a hub-and-spoke network topology.
  • Configure VNet peering for secure inter-network communication.



Architecture Overview

The hub-and-spoke model you created is a common Azure networking pattern designed for scalability, security, and manageability.

  • The hub-vnet acts as the central control point. It hosts shared services such as the Azure Firewall, monitoring tools, or VPN gateways. By centralizing security here, you avoid duplicating firewall or gateway resources in every network.

  • The app-vnet serves as the spoke network. It contains two isolated subnets:

    • The frontend subnet, which hosts the web servers that users interact with.
    • The backend subnet, which hosts databases or internal services that should never be exposed directly to the internet.

  • VNet peering creates a secure, private connection between the hub and spoke, allowing traffic to flow as if both networks were part of a single VNet, while still keeping administrative boundaries.

This architecture ensures that application traffic flows privately through Azure’s backbone without touching the public internet, while also keeping workloads segmented for better security and compliance.
Image17



Step 1: Create the App Virtual Network & Subnets

💡 Why start here?
The application network (spoke) hosts the workload — web servers in the frontend subnet and databases in the backend subnet. Segmenting resources into subnets improves security and traffic control.

  1. Sign in to the Azure Portal.

  2. Search for Virtual Networks and click + Create.
    Image1
    Image2

  3. Select the existing resource group or create a new resource group e.g RG1.

  4. Enter the virtual network name app-vnet and choose East US as the region.
    Image3

  5. Define the IP address space as 10.1.0.0/16.
    Image4

  6. Under subnets, create one named frontend with address range 10.1.0.0/24, and another named backend with address range 10.1.1.0/24.
    Image5
    Image6

  7. Click Review + create, then Create.
    Image7

✅ At this point, you have a dedicated application network ready for workloads.



Step 2: Create the Hub Virtual Network

💡 Why a hub?
The hub is the central network that connects to external services and enforces security policies like firewalls, monitoring, or VPNs.

  1. Go back to Virtual Networks and click + Create again.
    Image8

  2. Use the same resource group RG1.

  3. Name this network hub-vnet and choose East US.
    Image9

  4. Assign the address space 10.0.0.0/16.

  5. Edit the default subnet/Add a subnet named AzureFirewallSubnet with the range 10.0.0.0/26.
    Image10

  6. Select Review + create, then Create.
    Image11

✅ You now have a hub network prepared to secure and route traffic.



Step 3: Configure VNet Peering

💡 Why VNet peering?
Peering allows virtual networks to communicate privately without using the public internet. This ensures secure traffic flow between your application and hub services.

  1. Open app-vnet from the list of virtual networks.
    Image12

  2. Under Settings, select Peerings, then click + Add.
    Image13

  3. Enter the remote peering link name as app-vnet-to-hub.

  4. Select the virtual network hub-vnet as the peer.
    Image14

  5. For the local peering link name, enter hub-to-app-vnet.

  6. Leave other settings at their defaults and click Add.
    Image15

✅Once deployment completes, confirm that the peering status shows Connected.



Step 4: Verify the Architecture

💡 Why verify?
Testing ensures that connectivity works before deploying critical workloads.

  • Open both app-vnet and hub-vnet in the portal to confirm their subnets exist.
  • Check that the peering connection shows as connected.
    Image16



Conclusion

In this hands-on guide, you’ve built the foundation for a secure and scalable Azure network:

  • An app virtual network with separate frontend and backend subnets.
  • A hub virtual network with a firewall subnet.
  • VNet peering to enable secure, private communication between the two.

This hub-and-spoke design is widely used in Azure networking to keep applications isolated yet connected to centralized services.



Source link

Leave a Reply

Your email address will not be published. Required fields are marked *

Related News