Azure Load Balancers

Video Activity
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or

Already have an account? Sign In »

Time
22 hours 25 minutes
Difficulty
Intermediate
CEU/CPE
24
Video Transcription
00:00
>> Hey everybody. Welcome back.
00:00
In this lecture,
00:00
we're going to be talking about something
00:00
called Azure Load Balancers.
00:00
We're going to be learning about what
00:00
Azure Load Balancers are, the service,
00:00
we're going to be discussing why
00:00
load balancers are important,
00:00
and then understand some of
00:00
the security features that are
00:00
provided with load balancers.
00:00
What's a load balancer? Well,
00:00
if you've been working in IT for any number of years,
00:00
you've probably heard what it is,
00:00
especially if you deal with
00:00
networking. They're very common.
00:00
It's not just a cloud-based service
00:00
but Azure does have its own proprietary load balancer,
00:00
which is a managed piece of software that you can use.
00:00
They manage the infrastructure for you,
00:00
they deploy the VM,
00:00
and you can configure the load balancer to
00:00
distribute the traffic across
00:00
whatever VMs you're going to be using.
00:00
Really, at a high level,
00:00
that's what a load balancer is.
00:00
It's going to be sharing the traffic,
00:00
the request so that no one VM ever gets overwhelmed.
00:00
It can distribute it out and you can actually set
00:00
parameters in place to define
00:00
how you want that traffic to be distributed.
00:00
For example, you can say I
00:00
want 20 percent of the traffic to be
00:00
sent to this VM and 80 percent
00:00
>> to be sent to another VM,
00:00
>> or however you want.
00:00
You can distribute it across multiple VMs,
00:00
not just one or two but even more than that.
00:00
There's really just so many ways that you can go about
00:00
architecting the load balancing and
00:00
you can do this to provide
00:00
that low latency and that high throughputs architecture
00:00
that you need based on whatever
00:00
your organization defines or
00:00
whatever your organization requires.
00:00
There are two different types of
00:00
load balancers that you can have.
00:00
You can have public load balancers
00:00
or private load balancers.
00:00
Public, meaning that
00:00
the public Internet interfaces with
00:00
the load balancer before the traffic
00:00
gets sent over to
00:00
the VMs inside your subnet within your VNet,
00:00
or I should say, it is in the VNet but it's going to
00:00
be within the actual web tier of the subnet.
00:00
If we look at the graph here,
00:00
you can see what I'm talking about right here.
00:00
We have a TCP port 80,
00:00
this is where all the web traffic
00:00
is from the public Internet,
00:00
is going to hit the public load balancer
00:00
before it goes to
00:00
the individual web servers within your web tier subnet.
00:00
Now an internal load balancer
00:00
or a private load balancer is
00:00
the next load balancer that
00:00
we're going to be hitting from
00:00
all these web servers
00:00
before it hits maybe like the database,
00:00
and the data could be sent over or
00:00
the requests could be sent over via
00:00
whatever ports you want but you
00:00
can change the encryption at the load balancer as well.
00:00
If we wanted to go public and be non-encrypted,
00:00
HTTP without the secure header, we can do that,
00:00
and then if we go to the next load balancer,
00:00
we can go ahead and set it for encryption,
00:00
so it's going at 443.
00:00
We are doing HTTPS instead of HTTP
00:00
before it hits the business tier
00:00
or wherever we want this to be.
00:00
This could be databases, could be
00:00
proprietary information being housed
00:00
within these VMs or whatever.
00:00
That's the high lay of
00:00
the land of what you can do with load balancers.
00:00
The configurations for them are
00:00
pretty robust and actually,
00:00
in one of the labs in this module,
00:00
actually the labs follow this lecture,
00:00
you're going to get the opportunity to
00:00
actually stand up your own load balancers.
00:00
You'll have the opportunity to actually see what
00:00
the process looks like and how it works,
00:00
how difficult or actually how easy it is,
00:00
how simple it is to stand up a load balancer
00:00
and configure the high availability
00:00
of that distribution of traffic.
00:00
Here's a couple of use cases for load balancing.
00:00
Let's say you have
00:00
a load balancer in place because you want to be able to
00:00
distribute the traffic from
00:00
the public Internet to your different web servers.
00:00
Maybe you don't want
00:00
the IP addresses of the web servers to be public,
00:00
so you stick a load balancer in place in front,
00:00
have all the Internet traffic
00:00
interact with that load balancer,
00:00
and that way you're protecting
00:00
the secrecy or the details
00:00
>> of the web servers themselves.
00:00
>> There's a lot of different reasons
00:00
>> why you go about doing
00:00
>> this and it provides high availability,
00:00
which is basically the number one reason.
00:00
If we're talking about security,
00:00
we go back to the CIA triad,
00:00
confidentiality, integrity, and availability.
00:00
A load balancer is going to be
00:00
considered an availability control,
00:00
a security control for
00:00
availability because it ensures that
00:00
no one virtual machine ever
00:00
goes down because of a DDoS attack or
00:00
because there's just an overload of traffic,
00:00
being sent to that one server
00:00
that it just cannot handle it.
00:00
One way that it does this is by using health probes to
00:00
monitor those virtual machines and
00:00
then it can work together with
00:00
a auto-scaling group or
00:00
using skillsets to increase
00:00
the number of virtual machines that are available.
00:00
When you combine load balancers
00:00
and auto-scaling or skill sets,
00:00
you're able to provide that security control
00:00
of high availability and
00:00
load balancing across your architecture.
00:00
That about wraps up this lecture.
00:00
In this lecture, we talked about
00:00
an introduction of what Azure Load Balancing is.
00:00
This is very much a piggyback off of
00:00
the last lecture where we talked about skillset.
00:00
You got to understand how the two work together to
00:00
create a highly available solution,
00:00
and then we also talked about
00:00
the different types of Azure Load Balancers that are
00:00
available to you and
00:00
a few use cases as to
00:00
>> why you may want to implement this.
00:00
>> That wraps up this lecture.
00:00
I will see you in the next one.
Up Next
Automate Deployment of Azure Virtual Machines Lab
1h
Azure Monitor Service Lab
45m
Module 6 Conclusion
1m