How to create a shared services hub virtual network with isolation and segmentation

Let us assume you were tasked with applying Zero Trust principles to a hub virtual network in Azure. Let us take for instance, The IT department needs network isolation and segmentation for the web application in a spoke network.

To provide network i…


This content originally appeared on DEV Community and was authored by Raphael Olaniyi

Let us assume you were tasked with applying Zero Trust principles to a hub virtual network in Azure. Let us take for instance, The IT department needs network isolation and segmentation for the web application in a spoke network.

To provide network isolation and segmentation for the web application, you need to create an Azure virtual network with subnets with address space that the IT team provided. Once the virtual network is created, the next step is to configure virtual network peering. This allows the virtual networks to communicate with each other securely and privately.
We shall be performing these three tasks:

  • Create a virtual network
  • Create a subnet
  • Configure vnet peering

Create hub and spoke virtual networks and subnets
Begin by creating the virtual networks.
Open a browser and navigate to the Azure portal and login.

To create a Virtual Network, in the search bar at the top of the portal type “Virtual Networks” and select “Virtual Networks” from the results.

VN Login

In the “Virtual Networks” portal pane, select ““+ Create”.

““+ Create”.

Fill out all the tabs of the creation process by using the values in the following table:

Property Value
Resource group RG1
Name app-vnet
Region East US
IPv4 address space 10.1.0.0/16
Subnet name frontend
Subnet address range 10.1.0.0/24
Subnet name backend
Subnet address range 10.1.1.0/24
Note: Leave all other settings as their defaults. Select “Next” to advance to the next tab, and Create to create the virtual network.

RG1

Name

Vn

Vn

Vn

backend

Add

settings

Create

Image description

Following the same steps as above, create the Azure virtual network Hub-vnet by using the values in the following table:

Property Value
Resource group RG1
Name Hub-vnet
Region East US
IPv4 address space 10.0.0.0/16
Subnet name AzureFirewallSubnet
Subnet address range 10.0.0.0/24

Image description

RG1

VN Name

next

edit

subnet name

Save

Create

Complete

Once the deployment is complete. Navigate back to the portal, in the search bar type “resource groups” and select Resource Groups” from the results. Select on “RG1” in the main pane and comfirm both virtual networks have been deployed.

RG

RG

confirm

Setup a peer relationship between the virtual networks
Setting up a peer relationship between the two virtual networks will allow traffic to flow in both directions between the app-vnet and hub-vnet virtual networks.

In the Portal in the RG1 resource group view. Select on the “app-vnet” virtual network.

app-vnet

On the app-vnet context menu on the left hand side of the portal scroll down and select on peerings

peerings

In the app-vnet peerings pane, Select + Add.
+ Add.

Fill out the form using the values in the following table:

Property Value
This virtual network Peering link name app-vnet-to-hub
Remote virtual network Peering link name hub-to-app-vnet
Virtual network hub-vnet
Note: Leave all other settings as their defaults. Select “Add” to create the virtual network peering.

Add peering

Once the process completes,and after the configuration updates. Validate that the Peering status is set to Connected. (you may have to refresh the page to see the updated status)

Connected


This content originally appeared on DEV Community and was authored by Raphael Olaniyi


Print Share Comment Cite Upload Translate Updates
APA

Raphael Olaniyi | Sciencx (2024-07-26T13:14:37+00:00) How to create a shared services hub virtual network with isolation and segmentation. Retrieved from https://www.scien.cx/2024/07/26/how-to-create-a-shared-services-hub-virtual-network-with-isolation-and-segmentation/

MLA
" » How to create a shared services hub virtual network with isolation and segmentation." Raphael Olaniyi | Sciencx - Friday July 26, 2024, https://www.scien.cx/2024/07/26/how-to-create-a-shared-services-hub-virtual-network-with-isolation-and-segmentation/
HARVARD
Raphael Olaniyi | Sciencx Friday July 26, 2024 » How to create a shared services hub virtual network with isolation and segmentation., viewed ,<https://www.scien.cx/2024/07/26/how-to-create-a-shared-services-hub-virtual-network-with-isolation-and-segmentation/>
VANCOUVER
Raphael Olaniyi | Sciencx - » How to create a shared services hub virtual network with isolation and segmentation. [Internet]. [Accessed ]. Available from: https://www.scien.cx/2024/07/26/how-to-create-a-shared-services-hub-virtual-network-with-isolation-and-segmentation/
CHICAGO
" » How to create a shared services hub virtual network with isolation and segmentation." Raphael Olaniyi | Sciencx - Accessed . https://www.scien.cx/2024/07/26/how-to-create-a-shared-services-hub-virtual-network-with-isolation-and-segmentation/
IEEE
" » How to create a shared services hub virtual network with isolation and segmentation." Raphael Olaniyi | Sciencx [Online]. Available: https://www.scien.cx/2024/07/26/how-to-create-a-shared-services-hub-virtual-network-with-isolation-and-segmentation/. [Accessed: ]
rf:citation
» How to create a shared services hub virtual network with isolation and segmentation | Raphael Olaniyi | Sciencx | https://www.scien.cx/2024/07/26/how-to-create-a-shared-services-hub-virtual-network-with-isolation-and-segmentation/ |

Please log in to upload a file.




There are no updates yet.
Click the Upload button above to add an update.

You must be logged in to translate posts. Please log in or register.