{"id":572,"date":"2014-11-25T12:06:24","date_gmt":"2014-11-25T11:06:24","guid":{"rendered":"https:\/\/www.em-soft.si\/myblog\/elvis\/?p=572"},"modified":"2014-11-25T12:06:24","modified_gmt":"2014-11-25T11:06:24","slug":"create-virtual-network-in-azure","status":"publish","type":"post","link":"https:\/\/em-soft.si\/myblog\/elvis\/?p=572","title":{"rendered":"Create Virtual network in Azure"},"content":{"rendered":"<p><span style=\"font-family: times new roman,times; font-size: 12pt;\">I decided to publish few articles where I will document how to create a hybrid network between your local network and Azure (using some chip routers) and finaly how to create a VM in Azure as a part of your network. This is the Part 1 of whole proces and here is covered how to create Virtual network in Microsoft Azure.<\/span><\/p>\n<p><span style=\"font-family: times new roman,times; font-size: 12pt;\">In this article I will explain the complete step-by-step guideline how to create a network in Azure, site to site VPN from your local network to Azure and finally how to create an Azure VM connected to your local domain.<\/span><br \/>\n<span style=\"font-family: times new roman,times; font-size: 12pt;\">There are few things that you have to know:<\/span><\/p>\n<ul>\n<li><span style=\"font-family: times new roman,times; font-size: 12pt;\">local subnet,<\/span><\/li>\n<li><span style=\"font-family: times new roman,times; font-size: 12pt;\">IP of local router,<\/span><\/li>\n<li><span style=\"font-family: times new roman,times; font-size: 12pt;\">IP of local DNS server (in your AD domain).<\/span><\/li>\n<\/ul>\n<p><span style=\"font-family: times new roman,times; font-size: 12pt;\">First we need to create virtual network in Azure. This will be a part of our network, but as we will connect to this network via VPN, it must be on a different subnet.<\/span><br \/>\n<span style=\"font-family: times new roman,times; font-size: 12pt;\">To create a Virtual network, you have to login into an Azure portal, select Networks and then Create a virtual network.<\/span><\/p>\n<p><a href=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN1.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-medium wp-image-580\" src=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN1-300x279.png\" alt=\"Screen1\" width=\"300\" height=\"279\" srcset=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN1-300x279.png 300w, https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN1.png 973w\" sizes=\"auto, (max-width: 300px) 100vw, 300px\" \/><\/a><\/p>\n<p><span style=\"font-size: 12pt; font-family: times new roman,times;\">This will launch a wizard for creating network and this are the steps that you have to perform. First just give a name to network and chose a location and subscription. Be careful with choosing a location. Later you will be able to use VPN only to virtual machines, in the same location where the network is.<\/span><\/p>\n<p><span style=\"font-size: 12pt; font-family: times new roman,times;\"><a href=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN2.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-medium wp-image-581\" src=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN2-300x200.png\" alt=\"Screen 2\" width=\"300\" height=\"200\" srcset=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN2-300x200.png 300w, https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN2.png 962w\" sizes=\"auto, (max-width: 300px) 100vw, 300px\" \/><\/a><\/span><\/p>\n<p><span style=\"font-size: 12pt; font-family: times new roman,times;\">On the second screen you have to enter some data about connectivity. As we said at the beginning, the VPN will be site to site, so you have to select this one. DNS servers will be used to resolve names in this network and as we want to add a virtual machine, which is a part of our Active directory, we should be able to resolve it in our AD. This is the reason why specified DNS servers have to be our local DNS servers from local AD (not public DNS!).<\/span><\/p>\n<p><span style=\"font-size: 12pt; font-family: times new roman,times;\"><a href=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN3.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-medium wp-image-582\" src=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN3-300x194.png\" alt=\"Screen 3\" width=\"300\" height=\"194\" srcset=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN3-300x194.png 300w, https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN3.png 991w\" sizes=\"auto, (max-width: 300px) 100vw, 300px\" \/><\/a><\/span><span style=\"font-size: 12pt; font-family: times new roman,times;\">Next step is to specify our local network. You have to specify the name of the network. <\/span><br \/>\n<span style=\"font-size: 12pt; font-family: times new roman,times;\">VPN device IP address is a public address of your router, from which you will establish the connection to Azure.<\/span><br \/>\n<span style=\"font-size: 12pt; font-family: times new roman,times;\">In address space you have to specify all of your private networks, from which you want to establish connections to Azure.<\/span><br \/>\n<span style=\"font-size: 12pt; font-family: times new roman,times;\">All of this data are needed by Azure for determination of routes and connectivity.<\/span><\/p>\n<p><span style=\"font-size: 12pt; font-family: times new roman,times;\"><a href=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN4.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-medium wp-image-573\" src=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN4-300x194.png\" alt=\"Screen 4\" width=\"300\" height=\"194\" srcset=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN4-300x194.png 300w, https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN4.png 993w\" sizes=\"auto, (max-width: 300px) 100vw, 300px\" \/><\/a><\/span><\/p>\n<p><span style=\"font-size: 12pt; font-family: times new roman,times;\">In the last step, you have to define the address space used in Azure. This is a private IP address space and has to be different from your local IP address space. <\/span><\/p>\n<p><span style=\"font-size: 12pt; font-family: times new roman,times;\"><a href=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN5.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-medium wp-image-574\" src=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN5-300x143.png\" alt=\"Screen 5\" width=\"300\" height=\"143\" srcset=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN5-300x143.png 300w, https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN5-1024x488.png 1024w, https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN5.png 1226w\" sizes=\"auto, (max-width: 300px) 100vw, 300px\" \/><\/a><\/span><\/p>\n<p><span style=\"font-size: 12pt; font-family: times new roman,times;\">The rules to define are the same as those you have when you create VPN between two local sites, but there are some more settings:<\/span><\/p>\n<ul>\n<li><span style=\"font-size: 12pt; font-family: times new roman,times;\">Address space defines the whole address space that you can use as a part of Azure virtual network. Any subnet, which is a part of this network, must be created as a part of this space.<\/span><\/li>\n<li><span style=\"font-size: 12pt; font-family: times new roman,times;\">Gateway subnet: this subnet is responsible to have connectivity outside of Azure. In this subnet will be located a router, which will act as endpoint of VPN tunnel. Do not use this subnet to create virtual machines in it.<\/span><\/li>\n<li><span style=\"font-size: 12pt; font-family: times new roman,times;\">Subnet: you have to create at least one subnet. This will be the address space where you will create virtual machines. In many cases will be enough one subnet, but if you have to build a larger deployment, isolations of VM or similar things, maybe you will need more than one.<\/span><\/li>\n<\/ul>\n<p><span style=\"font-size: 12pt; font-family: times new roman,times;\"><a href=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN6.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-medium wp-image-575\" src=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN6-300x194.png\" alt=\"Screen 6\" width=\"300\" height=\"194\" srcset=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN6-300x194.png 300w, https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN6.png 991w\" sizes=\"auto, (max-width: 300px) 100vw, 300px\" \/><\/a><\/span><\/p>\n<p><span style=\"font-size: 12pt; font-family: times new roman,times;\">With this steps you created a set of network settings that include Azure virtual network, local network and DNS setting. When you finish this steps, your Azure network is ready to use, but don\u2019t forget to create a gateway. This one is necessary to establish a VPN connection.<\/span><\/p>\n<p><span style=\"font-size: 12pt; font-family: times new roman,times;\"><a href=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN7.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-medium wp-image-576\" src=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN7-300x201.png\" alt=\"Screen 7\" width=\"300\" height=\"201\" srcset=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN7-300x201.png 300w, https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN7.png 954w\" sizes=\"auto, (max-width: 300px) 100vw, 300px\" \/><\/a><\/span><\/p>\n<p><span style=\"font-size: 12pt; font-family: times new roman,times;\">If you want to use this network in a combination with your local network, you have to create a gateway. This is an IP which will act as an end point of VPN Tunnel. For creating the gateway, you have another wizard; it is not complicated, but it could take time (30 minutes or more).<\/span><\/p>\n<p><span style=\"font-size: 12pt; font-family: times new roman,times;\"><a href=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN8.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-medium wp-image-577\" src=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN8-300x225.png\" alt=\"Screen 8\" width=\"300\" height=\"225\" srcset=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN8-300x225.png 300w, https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN8-1024x769.png 1024w, https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN8.png 1161w\" sizes=\"auto, (max-width: 300px) 100vw, 300px\" \/><\/a><\/span><\/p>\n<p><span style=\"font-size: 12pt; font-family: times new roman,times;\">Click on create gateway on the bottom of the page, and use Static routing if you have a static IP address. After the creation of the gateway is complete, you will have an IP address of the gateway. This is the IP address that you will have to write into your local router as the endpoint of VPN. The only thing that is missing now, is a shared key. You can read it by clicking Manage Key button on the bottom of the page. Write down this key, because you will need it later in the router configuration.<\/span><\/p>\n<p><span style=\"font-size: 12pt; font-family: times new roman,times;\">If you have a router model (like Cisco\u2026) that is supported by Azure, you can export data to configure it directly from the portal with clicking \u201cExport\u201d button. In all other cases, you will need to estabilish VPN manually &#8211; here you will need to press the Manage Key button.<\/span><\/p>\n<p><span style=\"font-size: 12pt; font-family: times new roman,times;\"><a href=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN9.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-medium wp-image-578\" src=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN9-300x218.png\" alt=\"AzN9\" width=\"300\" height=\"218\" srcset=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN9-300x218.png 300w, https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN9.png 828w\" sizes=\"auto, (max-width: 300px) 100vw, 300px\" \/><\/a><\/span><\/p>\n<p><span style=\"font-size: 12pt; font-family: times new roman,times;\">\u00a0For establishing the connection to Azure network successfully, you will need a preshared key and a gateway IP address (showed at previous and next picture). I recommend, to write them down into some file or on a paper.<\/span><\/p>\n<p><a href=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN10.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-medium wp-image-579\" src=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN10-300x209.png\" alt=\"AzN10\" width=\"300\" height=\"209\" srcset=\"https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN10-300x209.png 300w, https:\/\/em-soft.si\/myblog\/elvis\/wp-content\/uploads\/2014\/11\/AzN10.png 503w\" sizes=\"auto, (max-width: 300px) 100vw, 300px\" \/><\/a><a style=\"text-decoration:none\" href=\"\/index.php?s=viagra-oral-jelly-20-prix\">.<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>I decided to publish few articles where I will document how to create a hybrid network between your local network and Azure (using some chip routers) and finaly how to create a VM in Azure as a part of your network. This is the Part 1 of whole proces and here is covered how to [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2,7,12,15],"tags":[35,40],"class_list":["post-572","post","type-post","status-publish","format-standard","hentry","category-azure","category-management","category-virtualization","category-windows-server","tag-azure","tag-windows-server"],"jetpack_featured_media_url":"","_links":{"self":[{"href":"https:\/\/em-soft.si\/myblog\/elvis\/index.php?rest_route=\/wp\/v2\/posts\/572","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/em-soft.si\/myblog\/elvis\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/em-soft.si\/myblog\/elvis\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/em-soft.si\/myblog\/elvis\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/em-soft.si\/myblog\/elvis\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=572"}],"version-history":[{"count":2,"href":"https:\/\/em-soft.si\/myblog\/elvis\/index.php?rest_route=\/wp\/v2\/posts\/572\/revisions"}],"predecessor-version":[{"id":584,"href":"https:\/\/em-soft.si\/myblog\/elvis\/index.php?rest_route=\/wp\/v2\/posts\/572\/revisions\/584"}],"wp:attachment":[{"href":"https:\/\/em-soft.si\/myblog\/elvis\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=572"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/em-soft.si\/myblog\/elvis\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=572"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/em-soft.si\/myblog\/elvis\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=572"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}