Azure Snippets w/c 11/11/2024

Summary of Azure snippets for the week commencing 11th November 2024, grouped by Azure service.

The new Azure updates page is now live (complete with RSS feed - why they could provide that for the updates but not for the new Tech Community platform blogs is a bit beyond me!). Some of the links this week use the old URL format, but they should still work.

GA = Generally Available
Public/Private Preview = as stated
RET = Service retirement

Azure services with highlighted updates this week:

• Azure Kubernetes Service
• Azure Load Balancer
• Azure Storage
• Compute
• Virtual Network Manager

Azure Kubernetes Service

• Latest AKS release (GA) : Includes AKS patch versions 1.28.14, 1.29.9, 1.30.5, and GA for AKS 1.31; plus the first official patch version of AKS LTS 1.27, 1.27.100.
• Advanced Container Networking Services (GA) : ACNS includes Advanced Network Observability, providing pod-level metrics, DNS insights, and enhanced troubleshooting tools for network debugging in AKS, plus FQDN filtering. A powerful upgrade to network observability in AKS.
• Delete a specific machine in a node pool (GA) : It is now possible to specifically choose which VM to delete and remove when scaling down a node pool in AKS. This provides greater control and flexibility in managing resources within the node pool. Actioned via the Azure CLI, and doesn’t cordon and drain the node - need to do that yourself first.
• Ignore PDBs on node deletion (GA) : Node pools in AKS can now be deleted even if there are pods monitored by a Pod Disruption Budget (PDB) – previously, the deletion of the node pool could fail due to an unsatisfied PDB. This enhancement allows the deletion to proceed by ignoring the PDB error that would previously block the deletion from continuing.
• Static egress gateway (Public Preview) : This feature allows AKS customers to configure a fixed source IP for out-of-cluster communications without incurring the significant cost of deploying a dedicated node pool with a NAT gateway. Useful for connecting AKS clusters/host apps to external systems via a known outbound IP address.

Azure Load Balancer

• Azure cross-subscription Load Balancer (GA) : Cross-subscription load balancing enables the load balancer components to be located in different subscriptions. For example, the frontend IP address or the backend instances could be located in a different subscription from the one that the load balancer belongs to. Useful if your networking and application resources are in different subscriptions, for example. Available in all Azure public regions, China cloud regions, and Government cloud regions.
• Load Balancer Health Status (GA) : Designed to provide detailed information about the health of backend instances in your Azure Load Balancer backend pool, the Health Status feature offers valuable insights into the state of health of your backend instances and specific reasons for their health status, including user-triggered issues and platform-triggered reason codes. Good that ALB is finally getting some more detailed monitoring!
• Administrative State (Admin State) (GA) : Admin State enables you to override the health probe behavior for each instance without additional configuration changes to your Load Balancer such as changing network security rules or closing ports. This makes management, especially during maintenance, patching or testing, easy; allowing you to set instances as up or down and control connection behavior with no additional overhead. I can think of several past instances where this would have been useful! Documentation and blog post.

Azure Storage

• Azure File Sync support for managed identities (Public Preview) : Eliminates the need for shared keys as a method of authentication to your Azure file shares by utilising a system-assigned managed identity provided by Microsoft Entra ID. A good move to improve security and make use of managed identities. Available in all Azure Public and Gov regions supported by Azure File Sync
• Convert to Azure Premium SSD v2 disks (GA) : This feature allows you to migrate your existing Standard SSD, Standard HDD, or Premium SSD v1 disks to Pv2 disks in a few clicks with minimal downtime. Very useful as it takes some of the pain out of such a migration, but there are some limitations - check the docs carefully.

Compute

• Windows Server 2025 (GA) : Advanced security, improved performance, and cloud agility - check out the blog post for more detail.

Virtual Network Manager

• Virtual Network Manager user-defined route (UDR) management (GA) : Hot on the heels of the recently announced IP address management preview feature, UDR management simplifies managing complex routing behaviors by automating UDR orchestration. Through Azure Virtual Network Manager’s UDR management, users can easily set up routing configurations that define routing rules, allowing automatic deployment across virtual networks. This means users no longer need to manually create UDRs or use custom scripts—reducing errors and simplifying routing at scale. GA in specific regions, including UK South and UK West. Centralising and automating UDR creation is definitely useful, particularly for big networks.

• AKS
• Azure Load Balancer
• Azure Storage
• Compute
• Virtual Network Manager