Please enable JavaScript.

Coggle requires JavaScript to display documents.

Azure Well architected Framework - Coggle Diagram

- - - - With GitHub Actions, you can build workflows that are custom automated processes to build, test, package, release, and deploy code
  - - - activity logging
      - health of services
      - metrics and diagnostics
      - recommendation on best practices
  - - - Azure CLI or Azure PowerShell
    - - ARM templates
  - - - canary testing : risk mitigation
      - blue green deployment : minimise downtime
      - A/B testing : effectiveness
- - - - only suitable for specific VMs
    - - temporary storage
- - - - aligns to the physical sections of the DC
  - - - active replication : updates to take place on multiple replicas simultaneously, guaranteeing consistency at the cost of throughput.
      - passive replication : replication performs synchronization in the background, removing replication as a constraint on application performance, but increasing RPO
    - - Covers VMs, Physical Servers and Individual workloads
- - - - data > app > compute > network > perimeter > Identity & Access > Physical
  - - - used for providing access to internal apps from outside the Organisation firewalls
      - uses Azure AD and a connector agent
  - - - symmetric
        
        single key
      - asymmetric
        
        paired keys public and private key
        
        used for TLS
      - encrypt databases
        
        Azure SQL uses TDE - transparent data encryption
        
        On-prem SQL DB - has always encrypt feature
        
        make use of symmetric keys
      - encrypt virtual hard disks VHD
        
        uses Azure disk encryption (ADE)
        
        uses Bit Locker for windows and DM-Crypt for Linux
        
        encrypts OS and data disks
    - - perimeter security
        
        Azure Application Gateway with WAF
        
        WAF provides advanced security to HTTP based services
        
        WAF is based on OWASP
        
        provides protection from XSS and SQL Injection