Additional Notes

VPN Gateway	Azure Virtual Network
Connect your datacenter to Azure	Enhance security and isolation
Connect to your Azure virtual networks from anywhere (whether you are on the road, working from your favourite café)	Manage virtual networks at scale

Azure Load Balancer

Deliver high availability and network performance to your apps

Internal Load Balancer (non-HTTP)

Improve availability and scalability of your applications by distributing network traffic
Load-balance internet and private network traffic with high performance and low latency. Instantly add scale to your applications and enable high availability. Load Balancer works across virtual machines, virtual machine scale sets, and IP addresses.

source

Application Gateway

Build secure, scalable, highly available web front ends in Azure

Load Balancer for your Web Application

Platform-managed, scalable, and highly available application delivery controller as a service
Centralized SSL offload and SSL policy
99.95 percent uptime service-level agreement for multi-instance deployments
Support for cookie-based session affinity
Customizable layer 7 load-balancing solution
Support for public, private, and hybrid websites
Integrated web application firewall
Management through Azure APIs

source

Azure Load Balancer Vs. Application Gateway

Azure Load Balancer	Application Gateway
Internal Load Balancer (non-HTTP)	External Load Balancer HTTP based

Load balancer services distribute traffic evenly across multiple backend services in the server pool. In Azure, non-HTTP (non-web) traffic is distributed using the Azure Load Balancer, and HTTP (web) traffic with the Azure Application Gateway.

Azure Express Route

A connection between your on-premise to Azure cloud from 50 Mbps to 10 Gbps

Subnets

A subnet is a range of IP addresses in the virtual network. You can divide a virtual network into multiple subnets for organization and security. Each NIC in a VM is connected to one subnet in one virtual network. NICs connected to subnets (same or different) within a virtual network can communicate with each other without any extra configuration.

sources

Subnets can’t be nested.

Azure Cosmos DB

Fast NoSQL database with open APIs for any scale

can be used to store semi-structured(NoSQL) database

sources

Azure SQL Database

Build apps faster on a fully managed SQL database
Part of the Azure SQL family, Azure SQL Database is an always-up-to-date relational database service built for the cloud. It automatically scales to meet your apps’ requirements and keeps them running with up to 99.995% availability. Build your next app with the simplicity and flexibility of a fully managed multimodel database.

Azure SQL

SQL Server on Azure Virtual Machines(IaaS)

Best for lift and shift of workloads requiring 100% SQL Server compatibility and OS- level access.

Azure SQL Managed Instance (PaaS)

Best for modernizing existing apps

Azure SQL Database(PaaS)

Best for modern cloud applications

sources

Azure SQL Managed Instance and SQL for VM both provide fully fledged SQL server. But SQL Managed Instance is a PaaS where as SQL for VM is IaaS, so to minimize management user should use SQL Managed Instance.

IoT

Azure IOT Hub (PaaS)

Managed service for bi-directional communication
Platform as a Service (PaaS)
Highly secure, scalable and reliable
Integrates with a lot of Azure Services
Programmable SDKs for popular languages (C, C#, Java, Python, Node.js)
Multiple protocols (HTTPS, AMQP, MQTT)

Azure IoT Central(SaaS)

IOT App Platform - Software as a Service(SaaS)
Industry specific app templates
No deep technical knowledge required
Service for connecting, management and monitoring IOT devices Highly secure, scalable and reliable
Built on top of the IOT Hub service and 30+ other services

Azure Sphere

Key Characteristics
Secure end-2-end IOT Solutions
Azure Sphere certified chips (microcontroller units - MCUs)
Azure Sphere OS based on Linux
Azure Security Service trusted device-to-cloud communication

Azure Sphere delivers components for building secure end-2-end IOT solutions with microcontroller standardization, secure operating system based on Iinux and a security secure for secure device to cloud communication and updates..

Azure Marketplace

	Azure Marketplace	AppSource
Target Audience	IT Professionals, Developers (specialist roles include DBAs, SecOps, DevOps, etc.)	Line of Business Decision-Makers (specialist roles include Procurement, Manufacturing, Accounting, etc.)
Built to Extend	Azure	Azure, Dynamics 365, Office 365, PowerBI, and Power Apps
Types of Solutions and Services	Infrastructure Solutions and Professional Services	Finished Line of Business Apps and Professional Services
Publishing Options	Contact Me, Consulting Services Offer, Trial, Virtual Machine, Solution Templates, and Managed Apps	Contact Me, Consulting Services Offer, or Trial
In-app Experience	Azure Portal and CLI	Office 365, Dynamics 365, Power BI, Office client apps

Source

URLs: https://azuremarketplace.microsoft.com/en-us https://appsource.microsoft.com/en-us/

Azure Synapse Analytics

formerly known as Azure Data Warehouse

Limitless analytics with unmatched time to insight

Azure Synapse Analytics is a limitless analytics service that brings together data integration, enterprise data warehousing, and big data analytics. It gives you the freedom to query data on your terms, using either serverless or dedicated options—at scale. Azure Synapse brings these worlds together with a unified experience to ingest, explore, prepare, transform, manage, and serve data for immediate BI and machine learning needs.

Azure Synapse Analytics is an evolution from an SQL Datawarehouse service which is a Massively Parallel Processing version of SQL Server. In a recent iteration, Azure Synapse also provided the ability to run queries and scripts using Apache Spark and by including Data Factory as an embedded component called Synapse Pipelines, now it is considered to be an end-2-end solution for big data workloads.

The functionalities it offers include:

Data Warehouse: The already popular Azure Data Warehouse technology for storing and managing data for analysis and decision making, now through SQL pools.
Big Data engine: With Spark pools, engineers can now run scalable analytics with Spark languages to do Big Data processing with them .
Serverless engine: Query Data Lakes directly using SQL statements in a simple way.
Data flows: To Develop ETL flows that consume or receive data in your Data Warehouse or Data Lake with the same engine used with Azure Data Factory.

https://app.pluralsight.com/guides/developing-an-analytics-engine-with-azure-synapse-analytics

SQL Pool
Spark Pool
Serverless
Connection with Other Services
- PowerBI : Connect your data directly to PowerBI datasets to expose and develop your reports and dashboards in an optimal and simple way.
- Data Factory: Take advantage of Synapse Analytics Data flows with Azure Data Factory advantages for your most robust ETL processes.
- Machine Learning: Take advantage of your Spark processes to develop models and expose them through Azure Machine Learning to have your analytical processes interconnected, scalable, and highly available.

Azure Databricks

Design AI with Apache Spark™-based analytics Big data analytics and AI with optimized Apache Spark

Azure HDInsight

Flexible big data and analytics platform supporting multiple open-source analytics technologies

Azure HDlnsight supports Hadoop, Spark and HBase as one of the available cluster types. Which means this service most likely will be able to cover the majority of their requirements or potentially allow for ‘lift and shift’ approach without any rework.

Azure HDInsight Vs. Azure Synapse Analytics

Azure HDInsight is : Flexible big data and analytics platform supporting multiple open-source analytics technologies

Azure Synapse Analytics : Big data analytics platform with a unified workspace experience supporting end-2-end data transformation with the power of SQL and Spark

Machine learning

Machine learning is a subcategory of Al where data scientists teach computer software to draw conclusions from customers data.
Azure Machine Learning is a powerful PaaS offering that allows customers to build their entire machine learning solutions in a single place.

Artificial intelligence

Artificial intelligence specializes on the simulation of human intelligence by computer software.

Machine Learning Workspace

Machine Learning Workspace is a Top-level Azure resource for management of Azure Machine Learning service

Azure Machine Learning Studio

Azure Machine Learning Studio is a Visual interface for the management of machine learning workspace

Azure Machine Learning Designer

Designer is a feature of Azure Machine Learning which enables customers to Build their machine learning pipelines visually

Azure Event Grid

Azure Event Grid allows customers to subscribe to built-in events coming from Azure subscription and resources.

DevOps

DevOps is a very broad topic and can mean anything. But in general, it is a set of practices that help with project delivery. Azure DevOps is just one of many available tools for building solutions using DevOps.

Azure DevOps is a collection of tools that allow for end-2-end development of applications and solutions by providing customers with a set of features like Boards (task/work management), Repos (git repositories), Pipelines (ci/cd pipelines) etc.

Azure DevTest Labs

Azure DevTest Labs is a workspace based service in Azure that allows customers for self-service provisioning of Azure Virtual Machines with extra tools (artifacts) and a lot of additional automation options.

Azure PowerShell

Azure PowerShell is the name for the PowerShell module that allows customers to perform common administrative tasks with their Azure resources.

Network Security Groups

Network Security Groups a service that is used to Filter inbound and outbound traffic to/from the virtual network resources
Network Security Groups allow customers to allow/deny traffic based on the port, like the one for RDP .
Rules can deny or allow access to the network based on the source/target port, source/target address specification, direction (inbound/outbound) and protocol.
Network Security Group is used to filter traffic in Azure based on the source/target address and/or the protocol.
Azure NSGs do not offer features for creating rules based on FQDN (fully qualified domain name).

Application Security Groups

Application Security Groups are not used to filter traffic based on the network protocol..

Application Security Groups Vs. Network Security Groups

Application Security Groups are not used to filter traffic based on the network protocol.. but Network Security Group is used to filter traffic in Azure based on the source/target address and/or the protocol.

Azure Route Table

Azure Route Tables are used to override default routing system in Azure.
Routes that are defined inside of Route Tables are so called user-defined routes (UDR).
Azure Route Tables can route all kinds of traffic. Both internal and external.
Azure Route Tables can be only associated with virtual network subnets.

Azure Firewall

Azure Firewall allows customers to filter both inbound and outbound traffic for Azure Virtual Network resources.
Both Azure Firewall and Network Security Groups allow for filtering of networking traffic based on protocol and IP address.
By default all traffic through the firewall is blocked, a rule has to be added in order to enable traffic flow.
Azure Firewall can be used for creating rules based on FQDN (fully qualified domain name).

DDoS

According to pricing page for DDoS protection service If the resource is protected with DDoS Protection Standard, any scale out costs during a DDoS attack are covered and customer will get the cost credit back for those scaled out resources..

Types of app services

With App Service, you can host most common app service styles like:

Web apps
API apps
WebJobs
Mobile apps

Serverless computing in Azure

Azure has two implementations of serverless compute:

Azure Functions: Functions can execute code in almost any modern language. Azure Logic Apps: Logic apps are designed in a web-based designer and can execute logic triggered by Azure services without writing any code.