Respected Sir ! I have watched almost all videos on internet on Load Balancer but I have not found this UNIQUE information. I have also gone thru Documentation too, but found it very complicated. After watching your video, It has instilled a clear understanding of this in my mind , even in sleep, I can now explain to others as well. Thank you very Much Sir. Really appreciated sir.
Thanks man. I keep coming back to your vidoes - because the others just simply don't explain it like you do. Your reiterations I don't skip because you are drilling the info into my head repeatedly. Keep up the good work and I really appreciate all the hard work you've been putting into this.
I’m preparing myself for the AZ-104 certification and this video has been very helpful to me, actually I’m gonna watch it again when I get a chance. Great content please keep sharing!
Awesome video, thank you very much. I'm waiting for video about app gateway and front door now :) It's good to know how those services work behind the scenes, very useful knowledge.
brill John. only the best explanation amongst several i have seen: think you could wrap up a final 2 minutes with the creation of the load balancer in azure at the end of the video/start
As the video discussed there are many capabilities and I don’t see what walking through creating one in 2 minutes would really add. There are lots of documents that walk through creation, my goal was to explain capabilities that would help you decide if it’s a fit and what configuration. If you want to see a demo I create and show config in the aks network deep dive.
Another thing that is confusing is when you create internal LB there is a setting that determines IP address assignment and by default it is dynamic. It is not clear what's that IP is used for.
Hey John! First of all, thank you! keep up this great work, your content is one of the best one! do you also plan to make a deep dive on application gateway?
John - I discovered your channel recently and I love the way you explain concepts in simple and effective way. Do you have a blog where people can post questions?
No, I keep an eye on comments related to the video topic and if have time will help there. I don’t really have enough spare time to do a lot of q&a though with job, family and creating content :)
Hey John, Correct me if I am wrong, Azure Load Balancer/Front Door/Application Gateway are all Reverse Proxy solutions, right? They are proxies for servers. Do Azure have any Forward Proxy solutions? I get these kind of questions from my customers.
One more great video, John! If you don't mind, I'd like to ask you for a video about monitoring azure (all aspects of monitoring, best practices...) if you are not already making this video for your MasterClass playlist. Thanks!!
Just found and following ur channel, always trying to start from the beginning. It's worth to see the big video. Please Do Not Throw Sausage Pizza Away 😋
Hi John. Good content. Are you familiar with Google's Maglev load balancer architecture? The description of Azure's Load Balancer that you present in this video looks surprisingly similar to Maglev's. Any comment on that?
Hi John, did you miss one important point with standard load balancer that, it'll only support standard Sku IP address. If you try to add standard IP address in basic sky, it'll not work. It's a major problem.
Hey John, if the traffic comes in from the load balancer (configured with outbound rules), and there is also a NAT gateway attached to the subnet, how would be reply traffic behave? Would it be using the LB outbound rule or NAT gateway? Thanks!
Is this also working with autoscale?? Lets say you have two webservers in the normal situation and you set autoscale to another two. Are these two new one automatically picked up by the loadbalancer??
Hi John, As I read we have provision of having a load balancer integration option with App Service. In a normal case when we have a Azure Web app we would have a single end point , so am i correct to conclude it will not add a value in such cases. Also could not think over when we would have a use case where we have multiple end points and LB is useful with App Service. Usually such balacing acts is done within a given app and not across app? Sorry if i sound foolish but love to get ur feedback !
Generally load balancer is useful for balancing between multiple instances but even if single provides an abstraction so flexibility for future growth and some additional control.
@@NTFAQGuy thanks that was quick reply. For abstraction may be azure application gateway would be a better option? So we dont expose the web app to the internet directly.. Thanks
Thanks for the information it was really helpful. I have a question, what was the use of creating service object in case of using App gateway ingress controller. As it directly interacts with pod. And again as pods may goaway how app gateway is going to track them.
Very good video...do we need to choose session persistence option when handling network symmetry for NVA behind a Azure Load balancer or would the HA port feature suffice? Also, you did mention Azure LB supports "stickiness" in what scenario would one then chose a Session Persistence option. Thanks
for NVAs and symmetry that is the HA port option. separate the 5,3,2 tuples controls how sticky it will be and you pick based on the need to go to same backend based on variations in port/protocol.
@@NTFAQGuy good video. can we place NVA (Firewall) in Sandwidch model. External LB-> FW-> Internal LB, Is this work or any conflict with health probe we need to check ? . Outbound traffic will exit directly via Firewall, Inbound traffic hit the External LB and FW do SNAT and DNAT.
assuming you mean floating IP. if you turn on floating IP then the VM on backend sees the FE IP and port as the destination not its own. Traffic comes back from FE IP
@@NTFAQGuy thanks for.reply john, sorry my question is if iam accessing from internet to the vm which is behind loadbalancer forward traffic will go as u mentioned, from what source ip I will be seeing return traffic at internet machine level will it be loadbalancer public ip or vm ip or fabric ip
If my outbound traffic from my load balancer trying to access azure managed database..and I have service connecting to internet as well. How I can configure my load balancer for such scenario. Best practices and guidelines ?
Unless you use private link or service end points the traffic will follow the regular NAT pattern (with a couple of service exceptions). So regular rules for,outbound apply.
Is it possible to use internal LB with outbound IP rules? E.g. if we want to 'hide' VM IP's for our internal servers IP's and show only LB outbound IP (IP's)?
@@NTFAQGuy For the external LB it is simple, but could we have similar functionality for internal LB, need to make it look like requests are coming from the single IP for the services hosted withing vnet
the way you explain how it works behind the scene is just phenomenal !!! Please do more in depth vid for network products such as setting up NVA (hub spoke) or in vWAN, etc
@@NTFAQGuy Yup found it! I see you did ATM 7yrs ago, can you do more of Azure traffic manager (ATM), CDN and AFD? I always find layer 7 products bit confusing with their HTTP headers and re-writes etc.!!!
Probably the best Azure content on RUclips right now. Thank you for the time and effort you put into creating these.
Very kind, thanks!
That Pamela reference really cracked me up 😂
Respected Sir ! I have watched almost all videos on internet on Load Balancer but I have not found this UNIQUE information. I have also gone thru Documentation too, but found it very complicated. After watching your video, It has instilled a clear understanding of this in my mind , even in sleep, I can now explain to others as well.
Thank you very Much Sir. Really appreciated sir.
That is very kind and appreciated, thank you! Please share !
Thanks man. I keep coming back to your vidoes - because the others just simply don't explain it like you do. Your reiterations I don't skip because you are drilling the info into my head repeatedly. Keep up the good work and I really appreciate all the hard work you've been putting into this.
That is very kind, thank you!
Recently discovered your channel ....it's a gold mine of information..thanks !
Happy to hear that! Thanks!
John has the best Azure content on RUclips. Watching this to train for AZ-700 right now
this video is phenomenal, it's so useful for a newly onboard member of microsoft like me!!!! so useful and indepth explanation of SLB logic!!!
Glad it’s useful! Best of luck 🤙
Thank you! This is the only material i found so far that helped me to understand how exactly Floating IP works.
You are welcome!
Just passed my AZ-104 exam and this is all thanks to your videos, I am starting my DevOps journey and looking forward to your videos once more
Fantastic!
I’m preparing myself for the AZ-104 certification and this video has been very helpful to me, actually I’m gonna watch it again when I get a chance. Great content please keep sharing!
Thanks, good luck!
Brilliant videos making complex subjects seem much more manageable and understanding what's actually going is is very interesting, Thanks!
Fantastic effort John. You're a great teacher! Looking forward to a Deep Dive on Application Gateway and Traffic Manager!
Best content I saw about Load Balancer. Thank you, man.
I appreciate that!
Bravo....Very beautifully explained. A big thank you
best explanation, stuff is best for interview discussions
Thanks, John
John, again an excellent deep drive! Although most topics were familiar to me, I have again learned a lot. Thanks!
Thanks
Best video; hands down. John: Thank you very much
Awesome video, thank you very much. I'm waiting for video about app gateway and front door now :)
It's good to know how those services work behind the scenes, very useful knowledge.
Thanks!
I agree with Devlin. Best Azure content. Good Job and many thanks to you for educating us.
Thank you
brill John. only the best explanation amongst several i have seen: think you could wrap up a final 2 minutes with the creation of the load balancer in azure at the end of the video/start
As the video discussed there are many capabilities and I don’t see what walking through creating one in 2 minutes would really add. There are lots of documents that walk through creation, my goal was to explain capabilities that would help you decide if it’s a fit and what configuration. If you want to see a demo I create and show config in the aks network deep dive.
@John Savill, you really know this topic. Very well presented and explained. thanks!
I appreciate that! Thank you!
My head is in the cloud after this session 🔥
with great clarity and awesome content, @John request you to prioritize AppGW in-depth video :) thank you so much for sharing
Another thing that is confusing is when you create internal LB there is a setting that determines IP address assignment and by default it is dynamic. It is not clear what's that IP is used for.
Thanks John - great video explained in a simple way
Awesome illustration, thanks a lot John :)
Hey John! First of all, thank you! keep up this great work, your content is one of the best one! do you also plan to make a deep dive on application gateway?
Thanks and maybe :)
thank you john, love all your videos!
John - I discovered your channel recently and I love the way you explain concepts in simple and effective way. Do you have a blog where people can post questions?
No, I keep an eye on comments related to the video topic and if have time will help there. I don’t really have enough spare time to do a lot of q&a though with job, family and creating content :)
Hello John, the LB SKU page is changed. The differences mentioned in this video considering different SKU's is still applicable.. right?
Yes
Hey John,
Correct me if I am wrong, Azure Load Balancer/Front Door/Application Gateway are all Reverse Proxy solutions, right? They are proxies for servers.
Do Azure have any Forward Proxy solutions? I get these kind of questions from my customers.
You mean like azure firewall?
@@NTFAQGuy Yeah, Azure Firewall can do that... I don't recall that, thanks bro.
Great one! Im curious what is the Pamelas version in OSI model?
lol, if you search for OSI and pamela anderson I'm sure it will be found :-)
Found it 🤣
One more great video, John! If you don't mind, I'd like to ask you for a video about monitoring azure (all aspects of monitoring, best practices...) if you are not already making this video for your MasterClass playlist. Thanks!!
it will be part of the master class ;-)
Just found and following ur channel, always trying to start from the beginning. It's worth to see the big video.
Please Do Not Throw Sausage Pizza Away 😋
lol
Hi John. Good content. Are you familiar with Google's Maglev load balancer architecture? The description of Azure's Load Balancer that you present in this video looks surprisingly similar to Maglev's. Any comment on that?
I am not aware, sorry.
I am still trying to figure out how Pamela Anderson fits into this ...
Lol
watch this awesome video today, really enjoy its usefulness! Thank you.
Hi John, did you miss one important point with standard load balancer that, it'll only support standard Sku IP address. If you try to add standard IP address in basic sky, it'll not work. It's a major problem.
Thought I said that. You have to use same skus. It’s called out in all the docs as well.
Hey John, if the traffic comes in from the load balancer (configured with outbound rules), and there is also a NAT gateway attached to the subnet, how would be reply traffic behave? Would it be using the LB outbound rule or NAT gateway? Thanks!
I have video on NAT gateway where cover this. Outbound reply will use same path as its inbound.
@@NTFAQGuy awesome, thanks John, will get to the NAT video soon :)
There is option for Floating IP (Enabled/Disabled)....Can you please explain whats the use of Floating IP enabled or disabled?????
I do cover it in the video.
Is this also working with autoscale?? Lets say you have two webservers in the normal situation and you set autoscale to another two. Are these two new one automatically picked up by the loadbalancer??
When you autoscale that component would add the new instances (or remove) from the backend set such as vmss, aks workers, app service plans etc.
Lmao my buddy has his book, I thought he looked familiar. Never thought he was this jacked irl tho 😳. Great content in both book/video.
haha, thanks. camera adds 10 lbs
Hi John, As I read we have provision of having a load balancer integration option with App Service. In a normal case when we have a Azure Web app we would have a single end point , so am i correct to conclude it will not add a value in such cases. Also could not think over when we would have a use case where we have multiple end points and LB is useful with App Service. Usually such balacing acts is done within a given app and not across app? Sorry if i sound foolish but love to get ur feedback !
Generally load balancer is useful for balancing between multiple instances but even if single provides an abstraction so flexibility for future growth and some additional control.
@@NTFAQGuy thanks that was quick reply. For abstraction may be azure application gateway would be a better option? So we dont expose the web app to the internet directly.. Thanks
@@sid0000009 yes if it’s http traffic then can also get waf for added protection
A friend referred me your channel. Lucky me❤️
Welcome!!
Thanks for the information it was really helpful. I have a question, what was the use of creating service object in case of using App gateway ingress controller. As it directly interacts with pod. And again as pods may goaway how app gateway is going to track them.
I talk aks specifics in my aks networking deep dive.
Very good video...do we need to choose session persistence option when handling network symmetry for NVA behind a Azure Load balancer or would the HA port feature suffice? Also, you did mention Azure LB supports "stickiness" in what scenario would one then chose a Session Persistence option. Thanks
for NVAs and symmetry that is the HA port option. separate the 5,3,2 tuples controls how sticky it will be and you pick based on the need to go to same backend based on variations in port/protocol.
@@NTFAQGuy good video. can we place NVA (Firewall) in Sandwidch model. External LB-> FW-> Internal LB, Is this work or any conflict with health probe we need to check ? . Outbound traffic will exit directly via Firewall, Inbound traffic hit the External LB and FW do SNAT and DNAT.
@@balasubramanianwv3877 you can have external point to NVA (which is normal) and then have NVA point to something via a load balancer yes.
John Savill let me check traffic flow
What will source ip when direct server path taken ,will it be source as loadbalancer ip or vm ip . Clarify kindly :)
assuming you mean floating IP. if you turn on floating IP then the VM on backend sees the FE IP and port as the destination not its own. Traffic comes back from FE IP
@@NTFAQGuy thanks for.reply john, sorry my question is if iam accessing from internet to the vm which is behind loadbalancer forward traffic will go as u mentioned, from what source ip I will be seeing return traffic at internet machine level will it be loadbalancer public ip or vm ip or fabric ip
Thanks for the video. Is the whiteboard file for this video available?
Added to description
@@NTFAQGuy Thank you so much for this. I really appreciate it.
If my outbound traffic from my load balancer trying to access azure managed database..and I have service connecting to internet as well. How I can configure my load balancer for such scenario. Best practices and guidelines ?
Unless you use private link or service end points the traffic will follow the regular NAT pattern (with a couple of service exceptions). So regular rules for,outbound apply.
you gave a very good explanation. thanks for such video, please bring more on Az -104......
About to release azure masterclass here which will help with the admin. Thanks
@@NTFAQGuy is app service having zone redundant feature inside region?
13:55 "this is why you can't ping a load balancer". My azure LB responds to a ping. Please clarify.
Was added as a feature post this video.
Is it possible to use internal LB with outbound IP rules? E.g. if we want to 'hide' VM IP's for our internal servers IP's and show only LB outbound IP (IP's)?
outbound to the internet is always NAT through an external IP if thats what you mean. the VM IP would never be seen.
@@NTFAQGuy For the external LB it is simple, but could we have similar functionality for internal LB, need to make it look like requests are coming from the single IP for the services hosted withing vnet
@@yahorsinkevich4451 not for non response traffic. Use a virtual appliance or fix why it has to come from one ip :)
If DSR the transmission is a-semetrical?
Well it does not go back via the mux but that’s an internal detail facilitated by sdn. Does not impact anything .
John where could I get that shirt man!? Heads in the cloud.
honestly don't remember where I got it. i bet if you search the internet you'll find a match.
merci John. Feel smarter after that ;-)
Thanks so much John
What is the scenario for foating-IP?
Multi instance nvas typically.
the way you explain how it works behind the scene is just phenomenal !!!
Please do more in depth vid for network products such as setting up NVA (hub spoke) or in vWAN, etc
There is already a video on NVA. Please check out the channel.
@@NTFAQGuy Yup found it!
I see you did ATM 7yrs ago, can you do more of Azure traffic manager (ATM), CDN and AFD?
I always find layer 7 products bit confusing with their HTTP headers and re-writes etc.!!!
Do you mean "People Desperately Need to See Pamela Anderson"?
Sure :)
@@NTFAQGuy 😂😂Got it Boss.
😁 I was taught the Pamela A too. We're getting old 😁
Lol
thank you for everything
Very welcome
Very usefully video! Thank you!
Glad it was helpful!
Thank You!
This is gold!
Thanks!
Great content as always!
Glad you enjoyed it
No no, please do tell about the Pamela Anderson thing. ;-)
lol
This guy reminds me the Brotherzzz actor...
I have no idea what that is :-)
Thank you for share
My pleasure
Awesome Shirt!!!
Thanks :)
God, LB is so complex ..
This is a deep dive so I go into how it works but the reality is to use it you don’t need to know all of this detail. Good luck