cross premise connectivity windows serverdownload.microsoft.com/download/7/f/f/7ff9136f-2c... ·...
TRANSCRIPT
Cross premise connectivity
with Microsoft Azure &
Windows Server Rasmus Hald [Microsoft] @RasmusHaldDK
Unique Azure value
It all starts with networking
Customer site Azure site
S2S Connect.
Session Demo´s
Cross premises connectivity with:
• #1 Windows Server RRAS
• #2 3. party gateways
• #3 Azure ExpressRoute
• #4 Using Windows Azure Pack
Demo #1
Cross Premise connectivity with Windows
Server RRAS
P2S VPNs
Existing datacenter
S2S VPN
Property Static Routing
VPN gateway
Dynamic Routing
VPN gateway
Site-to-Site connectivity
(S2S)
Policy-based VPN
configuration
Route-based VPN
configuration
Point-to-Site connectivity
(P2S) Not supported
Supported (Can coexist with
site-to-site connectivity)
Authentication method Pre-shared key •Pre-shared key for S2S VPN
•Certificates for P2S VPN
Maximum Number of Site-
to-Site (S2S) connections 1 10
Maximum Number of Point-
to-Site (P2S) connections Not supported 128
Active Routing Support
(BGP) Not supported Not supported
Azure Gateway
High Performance Gateway Better throughput
More S2S tunnels
Pricing
$0.49 per gateway hour
Data transfer & VNet traffic rates unchanged
No Encryption option Better throughput for Vnet-to-Vnet within Azure
Intra-/Inter-region Vnet-to-Vnet traffic stays within Microsoft networks, not Internet
PFS Support for IKE Compliance requirements & better security
Operations Logs Visibility into critical gateway events
Azure Gateway
Demo #2
Cross Premise connectivity with
3. party gateways
Azure Gateway
Config Script parameters <RP_OnPremisesNetwork>
Your chosen name for this object. Example:
myOnPremisesNetwork
<RP_AzureNetwork> Your chosen name for this object. Example:
myAzureNetwork
<RP_AccessList> Your chosen name for this object. Example:
myAzureAccessList
<RP_IPSecTransformSet> Your chosen name for this object. Example:
myIPSecTransformSet
<RP_IPSecCryptoMap> Your chosen name for this object. Example:
myIPSecCryptoMap
<SP_AzureNetworkIpRange> Specify range. Example: 192.168.0.0
<SP_AzureNetworkSubnetMask> Specify subnet mask. Example: 255.255.0.0
<SP_OnPremisesNetworkIpRange> Specify on-premises range. Example: 10.2.1.0
<SP_OnPremisesNetworkSubnetMask> Specify on-premises subnet mask. Example: 255.255.255.0
<SP_AzureGatewayIpAddress> This information specific to your virtual network and is
located in the Management Portal as Gateway IP address.
<SP_PresharedKey> This information is specific to your virtual network and is
located in the Management Portal as Manage Key.
Azure Gateway
Demo #3
Cross Premise connectivity with
Azure ExpressRoute
Private Network
Private Network
Private Network
Public internet
Microsoft Azure
Public internet
Microsoft Azure
US
• Atlanta
• Chicago
• Dallas
• Los Angeles
• New York
• Seattle
• Silicon Valley, CA
• Washington D.C.
EMEA
• Amsterdam
• London, UK
APAC
• Hong Kong
• Singapore
• Sydney
• Tokyo
• AT&T
• British Telecom
• Colt
• Equinix
• Internet Initiative Japan (IIJ)
• Level3
• Orange
• SingTel
• Tata Communications
• Telecity Group
• Telstra
• Verizon
Azure datacenters
ExpressRoute Locations (today)
New Locations and coming soon
Azure Gateway
Azure Express Route
Demo #4
Cross Premise connectivity with
Windows Azure Pack
Azure Gateway
Price sheet Site-to-Site VPN
~$36 pr. Month/Gateway
+ traffic cost (outbound)
Azure
Feature WS
RRAS
3rd
Party
Express
Route Expro
Express
Route MPLS
WAP
Cost $ $ $$ $$ $
Fault Tolerance Yes Yes Yes
Bandwidth SLA Yes Yes
Flat rate on traffic (outbound) No No No Yes No
Implementation time Fast Fast Via
Provider
Via
Provider
Very
Fast
Multi-site connectivity Yes Yes Yes Yes Yes
ACL Yes Yes Yes Yes Yes
Azure Gateway
Azure Express Route
Your feedback is important!
Scan the QR Code and let us know via the TechDays App.
Laat ons weten wat u van de sessie vindt via de TechDays App!
Scan de QR Code.
Bent u al lid van de Microsoft Virtual Academy?! Op MVA kunt u altijd iets nieuws leren over de laatste technologie van Microsoft. Meld u vandaag aan op de MVA Stand. MVA biedt 7/24 gratis online training on-demand voor IT-Professionals en Ontwikkelaars.