Category: Education

Microsoft AZ-700: Exercise – Configure Domain Name Servers Settings in Azure

Reading Time: 2 minutes

Notes from MS Learn AZ-700 Module 1: Introduction to Azure Virtual Networks – Unit 6: Exercise – Configure Domain Name Servers Settings in Azure

Create Private DNS zone and link VNets for registration and resolution. Test with two created VMs

Tasks (taken from MS Learn: Items without “Task” in front of them are personal additions)

  • Task 1: Create a private DNS Zone.
    • Search Private DNS Zones
    • Create
    • Select Resource Group and Create Name
    • Review & Create – Create
    • Go to resource to verify
  • Task 2: Link the subnet for auto registration.
    • Under Private DNS Zone resource created select “Virtual network links”
    • Click Add
    • Add link name
    • Select VNet
    • Check “Enable auto registration” box
    • Okay
    • Repeat for additional VNets
  • Task 3: Test the environment.
    • Use Azure PowerShell to deploy the template to create VMs.
      • Open Powershell (Cloud Shell button next to search bar in Azure Portal)
      • Upload template files (Upload/Download files button in PowerShell menu bar)
      • Verify Subscription
        • az account show –output table
      • Set subscription in PowerShell
        • az account set –subscription “Subscription Name”
      • Deploy ARM template to create VMs
        • $RGName = “ResourceGroupName”
        • New-AzResourceGroupDeployment – ResourceGroupName $RGName – TemplateFile templatename.json – TemplateParameterFile templatefilename.parameters.json
      • Return to Azure Portal to verify VM’s created
        • Search “Virtual Machines” in Portal
        • Select Virtual machines
  • Task 4: Verify records are present in the DNS zone and VMs function properly.
    • Search for Private DNS Zones in Azure Portal search bar
    • Select Private DNS Zones
    • Select Private DNS Zone created earlier
    • Verify A records exist for newly created VMs
    • Search Virtual Machines in Azure Portal search bar
    • Select Virtual machines
    • Select VM
      • In VM bar select Connect > RDP
      • Download RDP File
      • In right panel select Open File
      • Select Connect
      • Enter VM Username and Password and select OK
      • Open command prompt once connected to VM RDP session
      • Verification
        • ipconfig /all
        • Ping another VM by name to verify name resolution
        • nslookup othervmname.domain.com
Share this article:

Permanent link to this article: https://www.packetpilot.com/microsoft-az-700-exercise-configure-domain-name-servers-settings-in-azure/

Microsoft AZ-700: Design Name Resolution for your Virtual Network

Reading Time: 3 minutes

Notes from MS Learn AZ-700 Module 1: Introduction to Azure Virtual Networks – Unit 5: Design Name Resolution for your Virtual Network

DNS Services accessible from your own internal networks:

  • Public DNS resolve names and IP’s for resources and services accessible over the internet E.g. Web Servers.
    • Azure DNS is a hosting service for DNS domain that provides name resolution using Azure infrastructure.
    • Host on Azure global network of DNS servers.
    • Utilizes Anycast Networking where each query is sent to closest DNS Server
  • Create address records manually in relevant zones. Examples:
    • Host record – A/AAAA (IPv4/IPv6)
    • Alias record – CNAME
  • Azure DNS provides resolution in a VNet without need for custom DNS solution
  • DNS zone hosts DNS records for domain. Need to create a DNS zone for domain. Records for that domain then created inside the zone
  • Considerations:
    • Zone name must be unique within the resource group and must not already exist
    • Same zone name can be reused in different resource group or subscription
    • When multiple zones share same name, each is assigned different name server address
    • Root/Parent domain is registered at registrar and point to Azure NS
    • Child domains registered in AzureDNS directly
  • Delegate DNS Domains:
    • To delegate domain to Azure DNS must know name server name for your zone
    • Each DNS zone created is allocated an Azure DNS name server from pool
    • Once Name Server assigned, Azure DNS creates authoritative NS records in zone
    • Once DNS zone created, and have name servers, update the parent domain
    • Each registrar has own DNS management tools to change name server records – edit NS records and replaces with Azure DNS created ones
    • Always use all four name servers when delegating
  • Child Domains E.g. partners.contoso.com (taken from MS Learn):
    • Same process as typical delegations
    • Can be in same or different resource group as parent domain
    • Record set is collection of records in a zone that have same name and type
    • Record set can’t contain two identical records.
    • Empty record sets can be created but don’t appear on Azure DNS name servers
    • CNAME Record sets can only have one record
    • A records require TTL and IP address
  • Private DNS services resolve names and IP address for resources and services
    • When resource deployed in VNet and need to resolve to internal IP they use:
      • Azure DNS Private Zones
      • Azure-provided name resolution
      • Your own DNS server
  • Can use recursive where a DC in Azure can respond to DNS for its domain and forward other queries to Azure
    • VMs can see both private DC and Azure forwarder
    • Access to recursive resolvers in Azure via 168.63.129.16
  • Forwarding also enables DNS resolution between VNets and allows on prem machines to resolved Azure host names
    • DNS server VM must reside in the same VNet and configured to forward host name queries to Azure
    • DNS suffix different in each VNet use conditional forwarding rules to send DNS query to correct VNet for resolution.
  • Azure provided DNS
    • Azure provides free default internal DNS
    • Only basic authoritative DNS capabilities
    • If used, DNS zone names and records automatically managed by Azure. No control over zone names or life cycle of records
    • Internal DNS namespace: .internal.cloudapp.net
    • VM created in VNet registered in internal DNS zone get name similar to myVM.internal.cloudapp.net (taken from MS Learn)
    • Is Azure Resource name registered not guest OS name on VM
    • Limitations of Internal DNS
      • No resolution across VNets
      • Resource names no guest OS names registered
      • No manual records
  • Azure Private DNS Zones
    • Available only to internal resources
    • Global in scope = access from any region, subscription, VNet, tenant
    • If permission to read zone, can use for DNS resolution
    • Highly resilient, replicated to regions all throught world
    • Not available to internet resources
  • Custom Private DNS Zones can:
    • Configure specific DNS name for zone
    • Create records manually
    • Resolve names and IPs across zones
    • Resolve names and IPs across VNets
    • Can also use autoregistration which creates record based on Azure resource name
  • Link VNets to Private DNS Zone
    • At VNet level default DNS is part of DHCP assignments by Azure specifying 168.63.129.16 for Azure DNS
    • Override at VM NIC
    • Linking VNets options:
      • Registration – Each can link 1 private DNS zone, up to 100 VNets. Linkable to same zone
      • Resolution – Other private DNS zones for different namespaces
        • Link VNet to each for name resolution
        • VNet can link up to 1000 private Zones for resolution
  • Integration to on-prem DNS with VNets
    • External DNS (On-prem) can run any DNS Server e.g. BIND, AD DNS
    • Often use Azure private DNS zone for auto registration and custom config to forward queries to external zones to external DNS Server
    • Forwarding:
      • Forwarding specifies another DNS server (SOA for zone) to resolve query initial server can’t
      • Conditional forwarding specifies DNS server for a named zone so all queries for that zone sent to specific DNS Server
Share this article:

Permanent link to this article: https://www.packetpilot.com/microsoft-az-700-design-name-resolution-for-your-virtual-network/

Microsoft AZ-700: Exercise – Design and Implement a Virtual Network in Azure

Reading Time: < 1 minute

Notes from MS Learn AZ-700 Module 1: Introduction to Azure Virtual Networks – Unit 4: Exercise – Design and Implement a Virtual Network in Azure

Create VNets and Subnets in Azure Portal:

  • Create Resource Group
  • Create First VNet Name
    • Add Addresses
      • Add Subnets under VNet
        • Select – Review and Create
        • Select Create if validation succeeds
  • Repeat for each VNet required
  • Verify Resources Created
    • All Resources under menu
      • Select VNet
        • Select Subnets Under Settings
          • Verify Subnets and address ranges
Share this article:

Permanent link to this article: https://www.packetpilot.com/microsoft-az-700-exercise-design-and-implement-a-virtual-network-in-azure/

Microsoft AZ-700: Configure Public IP Services

Reading Time: 2 minutes

Notes from MS Learn AZ-700 Module 1: Introduction to Azure Virtual Networks – Unit 3: Configure Public IP Services

To allow public networks such as the internet to communicate with Azure resources you must use a public IP in use along with the private Azure IP.

A public IP in Azure is dedicated to a specific resource. Resources without public IP’s can communicate outbound through NAT with a non-dedicated IP

  • Azure Resource Manager is where a Public IP has it’s own properties. Example resources that can be assigned a Public IP:
    • VM Interfaces
    • VM Scale Sets
    • Public Load Balancers
    • VPN Gateways
    • NAT Gateways
    • App Gateways
    • Azure FW
    • Bastion Hosts
    • Route Servers
  • Public IP’s can be either IPv4 or IPv6 of different types:
    • Dynamic Public IP
      • Assigned automatically for example when VM created or started
      • Released automatically for example when VM stopped or deleted
      • Default allocation method within region
    • Static Public IP
      • Assigned and doesn’t change
      • Set allocation method to static
      • Released only when resource deleted or Allocation method changed to dynamic

SKU Table: Taken from MS Learn

Public IP addressStandardBasic
Allocation methodStaticFor IPv4: Dynamic or Static; For IPv6: Dynamic.
Idle TimeoutHave an adjustable inbound originated flow idle timeout of 4-30 minutes, with a default of 4 minutes, and fixed outbound originated flow idle timeout of 4 minutes.Have an adjustable inbound originated flow idle timeout of 4-30 minutes, with a default of 4 minutes, and fixed outbound originated flow idle timeout of 4 minutes.
SecuritySecure by default model and be closed to inbound traffic when used as a frontend. Allow traffic with network security group (NSG) is required (for example, on the NIC of a virtual machine with a Standard SKU Public IP attached).Open by default. Network security groups are recommended but optional for restricting inbound or outbound traffic
Availability zonesSupported. Standard IPs can be nonzonal, zonal, or zone-redundant. Zone redundant IPs can only be created in regions where there are three availability zones.Not supported.
Routing preferenceSupported to enable more granular control of how traffic is routed between Azure and the Internet.Not supported.
Global tierSupported via cross-region load balancers.Not supported.

Create a Public IP Address Prefix:

  • Public IP Prefixes are assigned from a pool in an Azure Region
  • Specify name and prefix size
  • IPv4 or IPv6
  • In Availability Zones: create as zone-redundant or associate with specific availability zone
  • After prefix is created you can create public IP addresses

Custom IP Address Prefix (BYOIP)

  • Used the same was as Azure owned public IP address prefixes
  • Can be associated with Azure resources, interact with internal/private Ips and VNets, as well as reach external destinations outbound from Azure WAN
Share this article:

Permanent link to this article: https://www.packetpilot.com/microsoft-az-700-configure-public-ip-services/

Microsoft AZ-700: Explore Azure Virtual Networks

Reading Time: 2 minutes

Notes from MS Learn AZ-700 Module 1: Introduction to Azure Virtual Networks – Unit 2: Explore Azure Virtual Networks

Overview:

Azure Virtual Networks = VNets

Mimic on-premises networks with Azure infrastructure benefits such as scale, availability, and isolation

VNets have their own CIDR and can be linked to other Vnets and on-prem networks as long as they don’t overlap.

Vnets offer control of DNS server settings and segmentation in to subnets

Capabilities:

  • Communication with internet by default outbound
  • Inbound requires assigning a public IP or public Load Balancer which can also be used for outbound connections
  • Communication between Azure resources
    • VNets
    • VNet service endpoints
    • VNet peering
  • Can connect not just to VM’s but also Azure resources such as:
    • App Service. Environment
    • Azure Kubernetes Service
    • Azure Virtual Machine Scale Sets
  • Service Endpoints can connect to Azure resource types such as:
    • Azure SQL database
    • Azure storage accounts
  • Communication between on-prem resources
    • Extend using Point-to-site VPN
    • Azure ExpressRoute
  • Filter network traffic
    • Network security groups
    • Network virtual appliances
  • Routing network traffic
    • Azure routes between subnets, connected virtual networks, on-prem networks, and internet by default.
    • Create route tables or BGP routes to override the default Azure created routes

VNET Design Conderations:

  • Create multiple virtual networks per region per subscription. Multiple subnets within each VNet
  • Virtual Networks:
    • Use RFC 1918 rages
      • 10.0.0.0-10.255.255.255 (10/8)
      • 172.16.0.0-172.31.255.255 (172.16/12)
      • 192.168.0.0-192.168.255.255 (192.168/16)
    • Additional Ranges
      • 224.0.0.0/4 (Multicast)
      • 255.255.255.255/32 (Broadcast)
      • 127.0.0.0/8 (Loopback)
      • 169.254.0.0/16 (Link-local)
      • 168.63.129.16/32 (Internal DNS)
  • Azure assigns resources IP’s from address space provisioned. Azure reserves the first 4 and last IP.
    • x.x.x.0-x.x.x.3 as well as the last address is the subnet
  • When planning consider:
    • No overlapping address space with other networks
    • Is security isolation required
    • Need to mitigate IP limitations
    • Connections between Azure VNets and On-prem
    • Isolation requirements for admin purposes
    • Use of Azure services that create their own VNets
  • Subnets
    • Range of IP addresses in a VNet. You can segment VNet into difference size subnets within subscription limit.
  • Smallest supported is /29 and largest is /2.
  • For IPv6 must be exactly /64
  • Considerations:
    • Each subnet must have unique address range in CIDR format
    • Certain Azure services require their own subnet
    • Can be used for traffic management
    • Can limit access to Azure resources to specific subnets with virtual network service endpoint. Can create multiple subnets and enable service endpoint for some subnets and not others.

Determine a naming convention:

  • Example (taken from MS Learn)
    • Pip-sharepoint-prod-westus-001
    • Resource Type-Workload/App-Environment-Region-Instance
  • Azure resource types have a scope that defines level resource must be unique
    • Management group
    • Subscription
    • Resource group
    • Resource

Regions and Subscriptions:

  • Resource can only be created in a VNet that exists in the same region and subscription as the resource
  • You can connect VNets that exist in different subscriptions and regions
  • Deploy as many VNets as needed up to subscription limit
  • Azure Availability Zones
    • Enables you to define unique physical locations with in a region. Zone is made up of one or more datacenters with independent power, cooling, networking.
    • Consider availability zones when designing Azure network and plan for services that support them.
    • Availability Zone categories:
      • Zonal services = Resources pinned to a specific zone
      • Zone-redundant services = Resources replicated/distributed across zones automatically.
        • Azure replicated across three zones for failure resiliency
      • Nonregional services = Service available from geographies is resilient to zone-wide outages
Share this article:

Permanent link to this article: https://www.packetpilot.com/microsoft-az-700-explore-azure-virtual-networks/

Fortinet Certified Associate in Cybersecurity Review

Reading Time: 2 minutes

Well at the end of 2024 I was on a contract job that didn’t get renewed in 2025 so since the New Year rolled over I’ve had time on my hands during the day. I figured I should do something productive. Aside from the staples of cleaning up around the house I thought I’d start heading down paths to help my career. So I did a little digging and came across this certification.

While looking into it I found out it was a free self paced training course with a free exam. Considering I have no income at the moment and need to keep my savings for the keys like mortgage, bills, loan payments, groceries, etc so this was a great find.

To add to the benefits of this I’m admittedly not a firewall guy. When I was working at the healthcare system we had out “Network Engineer 1-3” team, and then we had a “Security team”. The security team handled all the web filtering, most of the firewall maintenance with us Network Engineers doing minimal configuration changes as needed.

When working at the various VAR’s (Value Added Resellers) I’ve worked with it was a similar situation. We had our network infrastructure engineers that handled the route/switch and data center networking projects and consulting. Then we had the security engineers that handled all the various firewall vendor consulting and dedicated wireless engineers.

The Fortinet Certified Associate in Cybersecurity certification run off of a self paced course as I mentioned above. This course was perfect for me. It focuses basic configurations and information around the Fortigate firewall. It was a great intro to understanding the fundamentals of the Fortigate firewall to better understand at a high level what others are talking about. The course is: FCA – FortiGate 7.4 Operator Self-Paced

As quoted from Fortinet themselves the description of the course is:
“In this course, you will learn how to harden the security of your network by using the most common FortiGate features. Through demos and interactive simulations, you will learn how to perform basic operation tasks on FortiGate. You can then build on this knowledge by exploring more advanced topics related to these features.”

It goes over topics at a high level such as Interfaces and Routing, Firewall Policies, Authentication, SSL Inspection, Web Filtering, and more. It takes about a day to get through all the video’s and take the exam.

I found it as a good starting point for someone that hasn’t really had much experience with firewalls and a great way to start year 2025 off with a pick me up motivator. It’s kicked me in the pants to start looking back at everything else I started the last half of 2024 to get going again. I highly recommend it for anyone wanting to get their hands wet with Fortinet/Fortigate and have a achievable win to start out 2025 on a positive note. Here is to the new year and let’s all make it a good one!

Fortinet Certified Associate in Cybersecurity – Fortinet_Certified_Associate_in_CybersecurityDownload
Share this article:

Permanent link to this article: https://www.packetpilot.com/fortinet-certified-associate-in-cybersecurity-review/

That Time Of Year! (okay fun and annoying at the same time)

Reading Time: 2 minutes

Hey all! It’s that time of year again. Bombarded by nonsense commercials during T.V. Shows and Pro Sports about crap we don’t care about trying to sell staples and a staple gun to keep our scarf’s around our neck.

Okay. Blah blah blah I’m done with that before I go down a rant. What I want to say is the next few weeks are an amazing time to look at your next years plans for what to learn/study/re-up your knowledge on/etc.

A lot of companies will be (or maybe already are) offering holiday discounts. This could be a great time to set some goals/strategies, organize some plans and materials, and get squared away for next year. To rephrase from a friend since I can’t find the exact quote or who said it… as it seems to pertain to most of us in technology “I’m always a geek and need to play and learn something new”

Why am I so vague? Well…… Look out for these discounts as it could be:

  1. A vendor/business/individual/company that has their own paid training platform
  2. A vendor/business/individual/companies publishing company
  3. A video training platform
  4. Monetized Vloggers/Bloggers promoting content at a discount
  5. Personal training websites that have paid subscriptions to keep their content going
  6. Paid audio content you listen to on your commute to work

This list could go on. Everyone learns in their own way but the point of the above is simply to remind everyone to set some 2025 goals and keep an eye out for all these “Black Friday” and “Cyber Monday” discounts in the next week or two.

It’s a great time to save a dime or two on topics you have spinning around in your head and there might be a change they have some discounts for these Holiday — Money spending holidays. Sure! Set it as a goal for next year maybe but if they do offer discounts

*This by no means has any conclusion that I know of any individual company/individual is going to/or/is/doing discounts.

Just a heads up and reminder during the holiday season to keep your eye open in case they do discount and have something you want to learn that has been spinning around your head for a while. If they do, you might get a good deal on that topic/platform to buy your self a gift. While it’s a whirlwind holiday season for a lot of us with travel’s, family gatherings, friend get together’s, you can still watch and snag a deal if it pop’s up and put it for 2025 (or if this pops up years later whatever years) plan.

If I could I would but it’s just not possible to list everything I’ve received and it’d be ever growing. Too many platforms/e-mails/vendors/individual paid content creators/etc – to keep track of everyone discounting and keep it honest and accurate. So just keep any eye out but take this as a friendly reminder it’s a great time watch for a deal to pick up a course or book or whatever.

***Comments are disabled to prevent bad links to untrue discounts – Please look up your vendors/platforms/providers/creators/etc, to see if they have any

Share this article:

Permanent link to this article: https://www.packetpilot.com/that-time-of-year-okay-fun-and-annoying-at-the-same-time/

Keep Moving: Balancing Learning Multiple Things

Reading Time: 4 minutes

As we all know, being a worker in information technology is dedication to continued learning. Forever and always. No matter your field of focus. Whether it be workstation/os, networking, wireless, servers, storage, security, or maybe multiple of those and more…it is a never ending grind. This honestly applies to any job/industry but I’ll write this post kind of on an I.T. concept.

That grind crosses multiple arenas. For one, there is simply personal growth. We all have something we want to learn because it intrigues us. From what I see from I.T. colleagues is we always have something we just want to learn/play with because we are curious people. We have to keep our brains moving. It might be an older technology or concept but something that sparks our brain and we want to tackle it.

Additionally there is learning to keep up on what’s new. This is a key thing in the I.T. industry because everything is always changing. This is certainly a challenge that kind of crosses paths with the above of being curious about something new to us that intrigues us. On the same note it’s key in our industry to stay up on what’s neat and new and becoming prominent in the industry.

There is another thing that triggers learning. That is our day to day/day job. Having worked in retail, corporate, and consulting you never know what’s going to pop up. Maybe your business is buying a new I.T. product that you need to help integrate. Or maybe transition to a new technology like from a traditional WAN to an SD-WAN solution. As I once had to do add in a TAP-AGG solution to our main network. That required learning that product/solution.

So how do you balance all of these learning area’s at once. It’s challenging for sure because you want to learn what intrigues you, what’s new in the industry, and what’s required of your day to day job tasks. It’s key to keep things straight and separate in a way.

I’m going to continue this post with the assumption you play in all of those arenas. The first thing that is key is time. This can be a tough one. Hopefully if you need to learn something for your job your company will let you set aside time during your day to focus on that. This can also come into play with learning to keep up with industry new trends. That last one is quite dependent on how your employer views emerging technology and keeping it’s staff up to date.

When it comes to the idea of learning new things that intrigue you for personal growth that more likely requires you using your own personal time. My best advice for this is use “down” time to your advantage. That may be your drive to/from work (or other places), lunch time, waking up an hour earlier, sitting in a waiting room (Doctor, car service, etc) for some sit down learning time.

There are multiple ways to leverage all this time. Drives can be a great time for listening to what I’m going to quote/unquote as “podcasts”. This could be a literal podcast, listening to a video such as youtube, udemy, other training platforms (please don’t watch and drive but leverage listening). Lunch and waiting rooms are great for watching video’s. Most videos from companies/training platforms/video bloggers are short and you can get one or two in.

We all have a life outside of this industry. Some of us have significant others and kids to take care of that may have functions going on in the evening. Family to meet up with from time to time for different events. Friends and Family to meet up with for a beverage or dinner. Sports and hobbies are a thing for us all. Maybe even a show/sport you like to watch. For me a key is to walk my dog as A: it’s good for me to get some exercise, B: it’s good for her as she is a senior dog so it keeps her moving and her joints health, and C: it’s a great time to clear my mind and even get the occasion interaction with neighbors and their kids. Don’t give any of that up. For me, I try and spend 30 minutes before bed reading something, but don’t stay up too late and be tired the next day because that doesn’t help.

Now to keep balance between studying multiple things set a schedule. Maybe that extra hour in the morning is the “keep up with the industry” time. Then your driving time/waiting rooms/lunch time is for the “what I want to learn that intrigues me” time. Since it’s a “just for you/fun” learning effort those distracting times can be good as you don’t have to be AS focused. Hopefully if you need to learn something for work you get that time as part of your job to learn it. The key is to set certain time’s for certain learning tasks to keep them separate and not be jumping back and forth between focuses during a sprint.

With that, keep boards on apps such as Trello. Break down what you are learning into chunks and keep track of it. That may be chapters in a book, videos, topics on an exam blueprint, or sections of a vendors training outline. I like to use Onenote and keep notebooks broken down into sections for whatever I’m trying to learn. I know some people prefer to do hand written notes in notebooks as it helps them with retention writing it down. Do what works for you but try to keep track. Keep a schedule and mark things off as you complete them.

The TL;DR is that in this industry there is always something to learn from some reason or another and often we have to juggle learning multiple things at the same time. This is fine but you have to dedicate time to each and use that time to focus as opposed to bouncing back and forth between things you are learning. You can’t tie your shoes and rake leaves at the same time. You need to give them each their own committed time.

Share this article:

Permanent link to this article: https://www.packetpilot.com/keep-moving-balancing-learning-multiple-things/

Cloud Networking: So far…

Reading Time: 2 minutes

Since I passed AZ-900 (fundamentals) I decided it was worth it to look into AZ-700 (Networking) as a next step. Why not?!

I currently have access to Udemy so I decided to take a course from the same instructor that wrote/recorded the course for my AZ-900 exam. If I’m honest I wasn’t impressed as compared to the fundamentals course. I do have another recommended course from a previous co-worker that I plan on taking as talking with him he said it was worth the time and helped him pass AZ-700 but as we all know time is hard to come by sometimes.

I’ve been going through the MS Learn course for AZ-700 and it’s intriguing and scaring me a bit. MS Learn is a great tool with lots of courses/modules so surely check it out. https://learn.microsoft.com. The course has been decent but the way it’s written seems to me like the exam is going to be very marketing based. Lot’s of slides about SKU’s and I’ll tell you there are a lot. Azure seems to have a bunch of ways to do similar things and many different SKU’s within each way of doing it. I’m having a tough time organizing it all in my head which will needed to be answering the questions.

I’ve only been going down the MS Azure rabbit hole because for some reason it sparked my brain. I know others that have went down AWS and Google Cloud paths and there is no doubt they all do it differently based on blogs and posts I’ve read. One thing I’ve learned so far is that the basic concepts of our core networking hasn’t really changed. It’s just different products and connectivity options. Whether you are moving 100% to the cloud or doing a hybrid approach of on-prem/colocation data centers and sharing connectivity with your end users to the cloud is a dizzying challenge of making decisions on products that are often usage based making the financial side a key component.

So far from what I’ve seen (and I know I’m late to the party) the overall network concepts of IP addressing, Application services, Virtual Machines, Load Balancing, VPN’s, Hub/Spoke networks with gateways hasn’t really changed it is just a matter of learning the concepts, available technology, and configuration options available with whatever cloud platform you choose. It is certainly a whirlwind and decisions are based on budget and needs as per usual. Luckily the documentation and purchasing calculators seem to be fairly well done to make things easier.

The process really hasn’t changed. As a network guy you still need to work with your app/dev, server, workstation, database teams, etc to discover and map out the needs. Then you have to pick the right products(SKU’s) for your platform to meet the demands and put together a configuration plan to make it happen. Cloud networking is just a new product to study/learn and create something that works.

While I’m early in the process of learning (which never ends) it’s been good to at least get an understanding of the topics/options. I may or may not have to use them but it’s been kind of fun digging into something new to me yet again. Never stop learning!

Share this article:

Permanent link to this article: https://www.packetpilot.com/cloud-networking-so-far/

Learning something new? Make a plan!

Reading Time: 4 minutes

Learning something new is always a task and challenge. Maybe you are studying for a certification. Or maybe just want to learn a new technology or concept. That most daunting task of learning is following through with it and complete it. It is easy to get side tracked and halted or maybe just complete stop and forget about it. One of the best things you can do to keep forward progress is to make a plan. Lay it out and organize it. It’s like a recipe. Make this first, then this second, then put it all together. I’ll go over some things I do for my plan.

The first thing I do is plan time. Set aside time for learning/studying/labing. We all have lives and things to do like laundry, dishes, mowing the lawn, etc. Many have kids with events and sports to go to. This can be a hard thing to do. For me I choose to wake up early to give myself an hour of study/lab time before breakfast (or maybe during breakfast). Maybe you choose the first hour after dinner or an hour after the kids go to bed. Being a NHL fan all the games are in the evenings so after making dinner and doing dishes it’s game time which is why I choose the wake up early method. Maybe you don’t watch much TV so evening may be better. But choose a time and map it out daily.

Leverage weekends! Unless you work on weekends or have migrations/cut overs etc there is more time in the day. In the summer it’s great to just sit on the back deck enjoying the sunshine and warmth and study/learn. For me I get great quiet time lounging around in the summer and since I’m in Michigan in the winter well, you just snow blow the driveway and then relax from the work so it’s good quiet time.

Another thing is “wait/bonus time”. Maybe you have a doctors appoint and are sitting in the waiting room. Or maybe getting an oil change/maintenance at a car shop or dealer. Some have kids at sporting practice. This is a great time to read blogs about your study subject or documentation. Short clips around the topic are great.

A lot of us eat lunch at our desks or at a company food court. Maybe you go out to a fast food restaurant or quick food restaurant to fill your hour lunch break. This is also a great time for blogs or technology documentation reading.

The next thing I do is pick my material. We all learn differently so this is an important decision. For me I usually pick a book, a video course, and a way to lab. You may use all of these or maybe you are just a reader. The important thing is to gather the material you need to study the topic. This is a pivotal point to laying out your plan.

From here I break things into chunks. If studying for a certification this is easy as it usually has a published blueprint for the exam. Even within that blueprint you can break it down even further. Maybe it’s a video course that has modules already broken down for you. Or if it’s a book it can be broken into chapters. You can further break these down into topics within a chapter or module. I like to take these chunks and make a Microsoft OneNote notebook with sections and pages for each topic I break down. I lay the sections and pages out based on my breakdown and leave them empty. As I study I take notes and fill in the pages. This acts like a check list as I proceed down the breakdown I made. If there are notes in it, I attempted/completed it. You might prefer a task board or excel sheet for this. Do whatever works for you.

You can do the same thing with just studying a technology/product. Most products have features that you are going to study. You can break your study plan up into the individual features. For example a firewall you might break it down into firewall rules, connectivity options, protocols, NAT options, and now-a-days some SD-WAN options. You can break your studying up into chunks.

Finally set a goal. This might be a successful deployment (I did this back in the day with a Gigamon deployment which was a device/company I never deployed before). Or if it’s a certification give your self a goal date to take the exam. Pass or not setting that goal date gives you a driving point to keep you motivated to make sure you stay on your study schedule. If you are like me and tend to get distracted another possible motivator is to actually pre-book the exam. This means you already dropped the cash and have to do your work. Or set a deployment date if you are just learning something for work and no exam. Motivate yourself!

For me it’s a chapter/module/chapter/feature a day if possible for whatever I’m studying. Whether certification or just learning a new technology. No, it’s not always possible but it’s a goal to push for.

The short story is set yourself up for success. We all have busy days and life’s and adding in studying something new is tough to fit in our daily schedule. Below is a short list of this post.

Schedule and set aside a time for study
Pick your study materials
Break down your focus (certification or technology) into chunks
Create a checklist (OneNote sections and pages, excel spreadsheet, etc) to cross off
Set a target (date for exam, date for deployment, etc)

Share this article:

Permanent link to this article: https://www.packetpilot.com/learning-something-new-make-a-plan/

Load more