At the heart of Microsoft’s Azure adoption strategy is the idea of the hybrid cloud, bridging on-premises datacenters and cloud computing. You don’t need to get rid of your old servers; instead, you connect them to the public cloud to take advantage of its scale and services, treating it as an extension of your existing datacenter.
There are two main ways of connecting to private virtual networks on Azure: you can use a VPN over the public internet, or you can set up a direct connection into Azure data centers with Microsoft’s ExpressRoute. For most use cases, the VPN option is the most economical because it uses your existing systems and so doesn’t require significant extra hardware or new leased lines.
Connecting to Azure over the public internet
Setting up a VPN to Azure is like setting up an IPSec VPN to any other network, much like configuring connections to branch offices or to a disaster recovery service. You need a VPN appliance from a Microsoft-approved vendor to provide the gateway to the VPN connection at your end, with an Azure VPN gateway set up in your Azure virtual network. Microsoft provides guidance on how to configure the network at both ends, with support for both policy- and route-based virtual network gateways.
If you’re using a relatively low bandwidth connection, there’s no need to buy any extra hardware because Azure is compatible with the VPN tools built into Windows Server’s Routing and Remote Access Service. That can make it easier to set up management networks for IaaS apps running on Azure, without having to build publicly accessible management web user interfaces.
, which isn’t cheap. ExpressRoute is essentially an extension of an existing WAN, with its own dedicated lines into Microsoft’s Azure network—and ExpressRoute’s prices are comparable to a WAN’s.
But by avoiding the public internet, you get all the bandwidth you contract for, and you aren’t affected by other traffic. You’re also less likely to lose a link, because each ExpressRoute circuit has primary and secondary connections, reducing the risk of an outage.
, a portable NAS that, when it b comes available, you order from the Azure portal that can handle 100TB of raw storage. Weighing about 45 pounds, it shouldn’t cost that much to send via courier services, and because it’s ruggedized it should survive shipping. Once it’s plugged in on your end, you load your data over standard SMB connections. Once back at an Azure data center, the data is offloaded into your Azure storage account.