Professional Documents
Culture Documents
PRACTICAL FILE
MTECH CST 2ND SEMESTER
b) What are the various Azure Services and how does Azure Work?
Azure provides more than 200 services, are divided into 18 categories.
These categories include computing, networking, storage, IoT,
migration, mobile, analytics, containers, artificial intelligence, and other
machine learning, integration, management tools, developer tools,
security, databases, DevOps, media identity, and web services. Lets take
a look at some of the major Azure services by category:
Computer Services
• Virtual Machine
This service enables you to create a virtual machine in windows,
Linux or any other configuration in seconds.
• Cloud Service
This service lets you create scalable applications within the cloud.
Once the application is deployed, everything, including
provisioning, load balancing, and health monitoring, is taken care
of my Azure.
• Service Fabric
With service fabric, the process of developing a microservice is
immensely simplified. Microservice is an application that contains
other bundled smaller applications.
• Functions
With functions, you can create applications in any programming
language. The best part about this service is that you need not
worry about hardware requirements while developing
applications because Azure takes care of that. All you need to do
is provide the code.
Networking
• Azure CDN
Azure CDN(Content Delivery Network) is for delivering content to
users. It uses a high bandwidth, and content can be transferred to
any person around the globe. The CDN service uses a network of
servers placed strategically around the globe so that the users can
access the data as soon as possible.
• Express Route
This service lets you connect your on-premise network to the
Microsoft cloud or any other services that you want, through a
private connection. So, the only communication that will happen
here will be between the enterprise network and the service that you
want.
• Virtual network
The virtual network allows you to have any of the Azure services
communicate with one another privately and securely.
• Azure DNS
This service allows you to host your DNS domains or system domains
on Azure.
Storage
• Disk Storage
This service allows you to choose from either HDD (Hard Disk
Drive) or SSD (Solid State Drive) as your storage option along with
your virtual machine.
• Bob Storage
This service is optimized to store a massive amount of
unstructured data, including text and even binary data.
• File Storage
This is a managed file storage service that can be accessed via
industry SMB(server message block) protocol.
• Queue Storage
With queue storage, you can provide stable message queuing for
a large workload. This service can be accessed from anywhere in
this world.
c) Why use Azure?
Now that you know more about Azure and the services it provides, you
might be interested in exploring the various uses of Azure.
• Application development: You can create any web application in
Azure.
• Testing: After developing an application successfully on the
platform, you can test it.
• Application hosting: Once the testing is done, Azure can help you
host the application
• Create virtual machines: You can create virtual machines in any
configuration you want with the help of Azure.
• Integrate and sync features: Azure lets you integrate and sync
virtual devices and directories.
• Collect and store metrics: Azure lets you collect and store
metrics, which can help you find what works.
• Virtual hard drives: These are extensions of the virtual machines;
they provide a huge amount of data storage.
Experiment:-2
2) To create a virtual machine.
a) Create a virtual machine in the portal
In this task, we will create a Windows Server 2019 Datacenter – Gen1
virtual machine.
1. Sign in to the Azure portal (https://portal.azure.com).
2. From the All services blade, search for and select Virtual machines,
and then click + Add and choose + Virtual machine.
3. On the basis tab, fill in the following information (leave the defaults
for everything else):
Settings Values
4. Switch to the networking tab, and look for the Select inbound ports:
Settings Values
6. Leave the remaining defaults and then click the Review + Create
button at the bottom of the page.
7. Once validation is passed click the Create button. It can take
anywhere from five to seven minutes to deploy the virtual machine.
8. You will receive updates on the deployment page and via the
Notifications area (the bell icon in the top menu).
9. Verify port 80 and 3389 opened
EXPERIMENT:- 3
3) To create a web app
In this walkthrough, we will create a new web app that runs a docker
container. The container displays a Welcome message.
Task1:- Create a web app
Azure App service is actually a collection of four services, all of which are
built to help you host and run web applications. The four services(Web
Apps, Mobile Apps, API Apps, and Logic Apps) look different, but in the end
they all operate in very similar ways. Web apps are the most commonly
used of the four services, and this is the service that we will be using in this
lab.
In this task we will create an Azure app service web app.
a) Sign-in to the Azure portal.
b) From the All services blade, search for and select App services, and click
+ Add, + create, or + New.
c) On the Basics tab of the web app blade, specify the following settings
(replace xxxx in the name of the web app with letters and digits such
that the name is globally unique). Leave the defaults for everything else,
Including the app service plan.
Setting Value
Name myDockerWebAppxxxx
Region East US
d) Click Next > Docker and configure the container information. The startup
command is optional and not needed in this exercise.
Setting Value
Name Vnet1
Password Pa$$w0rd1234
3. Select Networking tab. Make sure the virtual machine is placed in the vnet1
virtual network. Review the default settings, but do not make any other
changes.
4. Click Review + create. After the validation passes, click create. Deployment
times can vary but it can generally take between three to six minutes to
deploy.
5. Monitor your deployment, but continues on to the next step.
6. Create a second virtual machine by repeating steps 2 to 4 above. Make sure
use a different virtual machine name, that the virtual machine is in the
same virtual network, and is using a new public IP address.
Setting Value
Public IP Vm2-ip
7. Wait for both virtual machines to deploy and status says running.
Task 3:- Test the connection
In this task, we will try to test whether the virtual machines can communicate
(ping) each other. If not we will install a rule to allow an ICMP connection. Usually
ICMP connections are automatically blocked.
1. From the All resources blade, search for vm1, open its Overview blade, and
make sure its Status is Running. You may need to Refresh the page.
2. On the Overview blade, select Connect and then select RDP from the drop
down.
Note: The following directions tell you how to connect to your VM from a
Windows computer.
3. On the Connect with RDP blade, keep the default options to connect by IP
address over port 3389 and click Download RDP File.
4. Open the downloaded RDP file (located at the bottom left of you VM) and
click Connect when prompted.
5. In the Windows Security window, type the username azureuser and
password Pa$$w0rd1234 and then click OK.
6. You may receive a certificate warning during the sign-in process.
Click Yes to create the connection and connect to your deployed VM. You
should connect successfully. Close the Windows Server and Dashboard
windows that pop up. You should see a Blue Windows background. You are
now in your virtual machine.
7. Open up PowerShell on the virtual machine by clicking the Start button,
and in Search type PowerShell, right click on Windows PowerShell to Run
as administrator
8. In Powershell, try to ping vm2 by typing:
CodeCopy
ping vm2
Tier Instance
Standard A2: 2 Core(s), 3.5 GB RAM, 135 GB
Temporary storage
Note: The VM instance specifications and pricing may differ from those in this
example. Follow this walkthrough by choosing an instance that matches the
example as closely as possible. To view details about the different VM product
options, choose Product details from the More info menu on the right.
5. Set the Billing Option to Pay as you go.
6. In Azure, a month is defined as 730 hours. If your VM needs to be available
100 percent of the time each month, you set the hours-per-month value
to 730. This walkthrough example requires one VM to be available 50
percent of the time each month. Leave the number of VMs set at 1, and
change the hours-per-month value to 365.
7. In the Managed OS Disks pane, modify the default VM storage
configuration.
Tier Disk Size Number of Snapshot Storage
Disks Transactions
Standard S30: 1024 1 off 10,000
HDD GiB
10. To add an Application Gateway, return to the top of the Azure Pricing
Calculator webpage. In the Networking product menu, click the Application
Gateway tile. In the Application Gateway message dialog, click View.
11. Add a name for your Application Gateway configuration. This walkthrough
uses the name App Gateway: Windows VM. Modify the default Application
Gateway configuration by adding the following details.
Region Tier Size
Instances Hours
1 365
Data Processed
50GB
VMs 50
Virtualization Hyper-V
Core(s) 8
RAM (GB) 16
Optimize by CPU
VMs 50
Core(s) 8
RAM(GB) 16
Optimize by CPU
Settings Value
Capacity 60 TB
Backup 120 TB
Archive 0 TB
Outbound 15 TB
6. Click next.
7. Explore the options and make any adjustments that you require.
Settings Value
Currency Euro
8. Click next.
Task 2:- Review the results and save a copy.
In this task, we will review cost saving recommendations and download a
report.
1. Review the Azure cost saving recommendations and visualizations.
Settings Value
Timeframe 3 years
2. To modify the information you provided, go to the bottom of the page, and
click Back.
3. To save or print a PDF copy of the report, click Download.
EXPERIMENT:- 7
7) To calculate composite SLAs.
Task 1:- Determine the SLA uptime percentage values for our application.
1. In a browser, go to the SLA summary for Azure services page.
2. Locate the App Service SLA uptime value, 99.95%. Click View full details,
and then expand SLA details. Notice the Monthly uptime
percentages and Service Credits.
3. Return to the SLA webpage and locate the Azure Active Directory
B2C service and determine the SLA uptime value, 99.9%.
4. Locate the Application Gateway SLA uptime value, 99.95%.
5. The Azure SQL database uses Premium tiers but is not configured for Zone
Redundant Deployments. Locate the Azure SQL Database SLA uptime
value, 99.99%.
Note: There are different uptime values for different configurations and
deployments of Azure SQL Database. It is important you are clear on your
required uptime values, when planning and costing your deployment and
configuration. Small changes in uptime can have impact on service costs as well as
potentially increase complexity in configuration.
Task 2:- Calculate the application composite SLA percentage uptime.
1. If any of the services that comprises our application are not available our
application will not be available for users to sign in to and use. As such the
total uptime for our application consists of the following:
App Service % uptime X Azure AD B2C % uptime X Azure Application Gateway %
uptime X Azure SQL Database % uptime = Total % Uptime
which in percentage term is as follows:
99.95% X 99.9% X 99.95% X 99.99% = 99.79%
This is the SLA-based expected availability of our application with the current
services and architecture.
EXPERIMENT:- 8
8) To create a SQL database.
Password Pa$$w0rd1234
Click OK
4. On the Networking tab and configure the following settings (leave others
with their defaults)
Setting Value
7. Click review + create and then click Create to deploy and provision the
resource group, server, and database. It can take approx.. 2 to 5 minutes to
deploy.
In this task, we will create a windows server 2019 Datacenter virtual machine.
Settings Value
NIC network security group None
5. Switch to the management tab, and in its Monitoring section, select the
following setting:
Settings Value
Boot diagnostics Disable
6. Leave the remaining defaults and then click the Review + create button at
the bottom of the page.
7. Once Validation is passed click the Create button. It can take about five
minutes to deploy the virtual machine.
8. Monitor the deployment. It may take a few minutes for the resource group and
virtual machine to be created.
9. From the deployment blade or from the Notification area, click Go to resource.
10. On the SimpleWinVM virtual machine blade, click Networking, review
the Inbound port rules tab, and note that there is no network security group
associated with the network interface of the virtual machine or the subnet to
which the network interface is attached.
Note: Identify the name of the network interface. You will need it in the next task.
In this task, we will create a network security group and associate it with the
network interface.
1. From the All services blade, search for and select Network security
groups and then click + Add, + Create, + New
2. On the Basics tab of the Create network security group blade, specify the
following settings.
Setting Value
Name myNSGSecure
3. Click Review + create and then after the validation click Create.
4. After the NSG is created, click Go to resource.
5. Under Settings click Network interfaces and then + Associate.
6. Select the network interface you identified in the previous task.
In this task, we will allow RDP traffic to the virtual machine by configuring an
inbound security port rule.
Source Any
Destination Any
Protocol TCP
Action Allow
Priority 300
Name AllowRDP
6. Select Add and wait for the rule to be provisioned and then try again to
RDP into the virtual machine by going back to Connect This time you should
be successful. Remember the user is azureuser and the password
is Pa$$w0rd1234.
Task 3:- Configure an outbound security port rule to deny Internet access.
In this task, we will create a NSG outbound port rule that will deny Internet
access and then test to ensure the rule is working.
Source Any
Protocol TCP
Action Deny
Priority 4000
Name Denylnternet