Brewed in the Cloud by Chris Hailes

Technolgy best served with a hot coffee or cold beer!

Azure Networking Security PaaS

Stirring in Services: Zero Trust for PaaS with Private Links

Applying Zero Trust to Azure PaaS — securing SQL, Storage, and Key Vault with Private Endpoints, DNS, and service isolation.

Azure Networking Security Identity

Identity is the New Perimeter: Conditional Access & Network Access

In Zero Trust networking for Azure, identity replaces the traditional perimeter. This post shows how Conditional Access, PIM, and JIT VM access plug directly into network security design.

Azure Networking Security Bicep

Least Privilege Pour: Using NSGs & AVNM Security Admin Rules

Scaling Zero Trust networking in Azure with NSGs for local segmentation and AVNM Security Admin Rules for global enforcement.

Azure Networking Bicep Security

Brewing the Basics: Zero Trust Networking in Azure

Because “trust but verify” is old hat. Now it’s “verify everything, every time.”

Azure Networking Bicep

NVAs & Dynamic Routing with Azure Route Server

BGP, meet Azure, dynamic routing without the migraine

Azure Networking Bicep

Next Hop, Please - Routing to Network Virtual Appliances (NVAs)

All roads lead to the NVA, if you route them right

Azure Networking Bicep

Peering into the Void — Routing with VNet Peering

Peered VNets? Now you just need the right roads between them

Azure Networking Bicep

Azure Route Tables 101 — Controlling Traffic in the Cloud

The difference between default and defined can make or break your traffic flows

Azure Networking Enterprise Infrastructure Network Governance

AVNM + IPAM: Finally, Centralised Address Management without the Spreadsheet

Azure Virtual Network Manager’s built-in IPAM has officially arrived — here’s why that matters

Azure Networking Enterprise Cloud Adoption Framework

Azure Virtual Network Manager for Disaster Recovery

Because ‘it won’t go down’ isn’t a DR strategy

1 2 3 … 14