Aidan Finn

In this post, I will explain how you can enable Virtual Network (VNet) Flow Logs at scale using a built-in…

I found out yesterday that I was awarded my 18th annual Most Valuable Professional (MVP) award by Microsoft, continuing with…

In this post, I will show how to use Azure Virtual Network Manager (AVNM) to enforce peering and routing policies…

Exciting News: Cloud Mechanix is Evolving! I’m thrilled to announce the relaunch and transformation of Cloud Mechanix into a full-service…

I had the pleasure of chatting with Ned Bellavance and Kyler Middleton on Day Two DevOps one evening recently to…

There is no doubt that we are living in interesting times. It feels a little “Resevoir Dogs” in Europe these…

How do you plan a hub & spoke architecture? Based on much of what I have witnessed, I think very…

In this post, I am going to share a process for designing a hub virtual network for a hub &…

I see many people implementing classic network security designs in Azure. Maybe there’s DMZ and an internal virtual network. Maybe…

In this post, I want to discuss the importance of designing and implementing micro-segmentation in Azure networks. Repeating The Same…

In this Azure Networking deep dive, I’m going to share some of my experience around planning the creation and association…

Here comes yet another “How does it work” post on Azure networking. I have observed many folks who assume that…

In this post, I want to explain why routing is so important in Microsoft Azure. Without truly understanding routing, and…

You’re designing a new virtual network in Azure. You’re going to have three different security zones in your application. How…

The Network Security Group (NSG) is the primary mechanism for segmenting a subnet in Microsoft Azure. NSGs are commonly implemented.…

Yesterday, I explained how packets travel in Azure networking while telling you Azure virtual networks do not exist. The purpose…

I see many bad designs where people bring cable-oriented designs from physical locations into Azure. I hear lots of incorrect…

This is a topic that has been “top of mind” (I sound like a management consulting muppet) recently: how can…

In this post, I want to share the most important thing that you should know when you are designing connectivity…

You must have been hiding under a rock if you haven’t noticed how cloud computing has become the default in…

In this post, I want to discuss how I recently took over the management of an existing Azure Firewall using…

I’ll tell you about my new virtual training course on Azure Firewall and share some schedule information in this post.…

In this post, I will explain how to solve the situation when an Azure Image Builder job fails with the…

After a quiet few pandemic years with no in-person events and the arrival of twins, my in-person presentation activity was…

This post about Azure Virtual Network Manager is a part of the online community event, Azure Back To School 2024.…

In this post, I will discuss a recent scenario where we used Azure Route Server branch-to-branch routing to rescue a…

In this post, I will explain why Azure’s software-defined networking (virtual networks) differs from the cable-defined networking of on-premises networks.…

This post is about using either Network Rules or Application Rules in Azure Firewall for internal traffic. I’m going to…

Microsoft recently announced a public preview of User-Defined Route (UDR) management using Azure Virtual Network Manager. I’ve taken some time…

Have you wondered why an Azure subnet with no route table has so many default routes? What the heck is…

I found myself in a situation where I needed to document a lot of Azure Private DNS Zones. I needed…

In this post, I want to discuss how one should design network security in Microsoft Azure, dispensing with past patterns…

This is my updated post on providing information on what the MVP Summit is, what to expect, and some useful…

This post will explain how you can connect your Azure network(s) with Oracle Cloud Infrastructure (OCI) via the Oracle Cloud…

This post is going to explain why you should not be putting any compute into your hub VNet. Background I…

In this Festive Tech Calendar post, I am going to explain how to get Private Endpoints working in the real…

I will share my early experiences with Microsoft Copilot, the positives and negatives, clear up some false expectations, and explain…

October is the month of ghosts and monsters – Halloween (Samhain as we Celts originally called it). Read on to…

Microsoft has announced that the default route, an implicit public IP address, is being deprecated 30 September 2025. Background Let’s…

Something new appeared in recent times: the “Managed Private Endpoint”. What the heck is it? Why would I use it?…

September is a month of storms. There appears to have been lots of activity in the Azure cloud last month…

I spoke at Experts Live Europe last week and this post is a report of my experience at this independently…

This post is a part of the Azure Back to School 2023 online event. In this post, I will discuss…

Microsoft Ignite 2023 has been announced as a hybrid event. Let me explain why I have no interest in attending…

This post brings you a summary of the infrastructure announcements from Azure that were made during August 2023. There are…

Many people in Europe take the month of July off for vacation so they would have missed out on an…

This post will show how you can use an Azure Linux virtual machine to implement SNAT on an ExpresssRoute circuit…

This post explains how to make Cosmos DB replicas available using Private Endpoint. The Problem A lot of (most) Azure…

This post will explain how to override false positives in the (network) Azure Web Application Firewall (WAF), without compromising security,…

In this post, I’ll explain how to check if a client service, such as an App Service, has access to…