Deploying Website with Azure Load Balancer

Step 1: Create a Resource Group

1. Sign in to the Azure Portal https://portal.azure.com.
2. Click on the "Create a resource" button (green plus sign) in the upper-left corner.
3. Search for "Resource group" and select it.
4. Click the "Create" button.
5. Fill in the details for the resource group:
6. Subscription: Choose your Azure subscription.
7. Resource group: Enter a unique name for your resource group.
8. Region: Select a region for your resource group.
9. Click the "Review + create" button and then "Create" to create the resource group.

Resource Group

Step 2: Create a Network Security Group (NSG) with Inbound Rules

1. In the Azure Portal, search for "Network security group" and select it.
2. Click the "Create" button.
3. Fill in the details for the NSG:
4. Name: Enter a unique name for your NSG.
5. Resource group: Choose the resource group created in Step 1.
6. Region: Select the same region as your resource group.

7. Click the "Review + create" button and then "Create" to create the NSG.

8. After creating the NSG, select it and navigate to the "Inbound security rules" section.

9. Add the following inbound rules:

10. Rule 1: SSH (Port 22 Inbound)

    • Name: SSH
    • Priority: Choose a priority value (e.g., 100)
    • Source: Any
    • Service: SSH
    • Action: Allow

11. Rule 2: HTTP (Port 80 Inbound)

    • Name: HTTP
    • Priority: Choose a priority value (e.g., 200)
    • Source: Any
    • Service: HTTP
    • Action: Allow

12. Rule 3: ICMP Deny (Block All ICMP Inbound)

    • Name: ICMP Deny
    • Priority: Set the priority to 101
    • Source: Any
    • Service: ICMP
    • Action: Deny

13. Save the changes to the NSG.

Network Security Group

NSGSSHHTTPICMP

Step 3: Create a Virtual Network (VNet)

1. In the Azure Portal, search for "Virtual network" and select it.
2. Click the "Create" button.
3. Fill in the details for the VNet:
4. Name: Enter a unique name for your VNet.
5. Resource group: Choose the resource group created in Step 1.
6. Region: Select the same region as your resource group.
7. Configure the address space and subnets for your VNet.
8. Click the "Review + create" button and then "Create" to create the VNet.

Virutal Network

VNetSubnetASubnetBIP Addresses

Step 4: Create a Load Balancer

1. In the Azure Portal, search for "Load balancer" and select it.
2. Click the "Create" button.
3. Fill in the details for the load balancer:
4. Name: Enter a unique name for your load balancer.
5. Resource group: Choose the resource group created in Step 1.
6. Region: Select the same region as your resource group.
7. Choose the "Internet-facing" or "Internal" load balancer, depending on your requirements.
8. Configure the front-end IP configuration, back-end pools, and health probes as needed.
9. Click the "Review + create" button and then "Create" to create the load balancer.

Load Balancer

BasicsFrontend IP configurationPublic IP Address (frontend IP configuration)Backend PoolLoad Balancing RuleInbound NAT Rule

Step 5: Create a Virtual Machine Scale Set (VMSS)

1. In the Azure Portal, search for "Virtual machine scale set" and select it.
2. Click the "Create" button.
3. Fill in the details for the VMSS:
4. Basics:
   • Subscription: Choose your Azure subscription.
   • Resource group: Choose the resource group created in Step 1.
   • Region: Select the same region as your resource group.
   • Name: Enter a unique name for your VMSS.
5. Image:
   • Choose a base image for your virtual machines.
6. Disks
   • change the OS disk type to Standard SSD
7. Networking:
   • Virtual network: Select the VNet created in Step 3.
   • Subnet: Choose a subnet within the VNet.
   • Public IP address: Depending on your configuration, choose to have a public IP or not.
   • Load balancer: Select the load balancer created in Step 4.
8. Scaling:
   • Configure the scaling options based on your requirements.
9. Advanced:
   • select Enable User Data and input the following command.

#!/bin/bash

# Update system and install Apache2 and jq
apt-get update -y
apt-get install -y apache2 jq

# Ensure Apache2 is running and enabled on boot
systemctl start apache2
systemctl enable apache2

# Fetch Azure VM metadata
METADATA=$(curl -H Metadata:true -s "http://169.254.169.254/metadata/instance?api-version=2021-01-01")

# Log metadata for debugging purposes
echo "$METADATA" > /tmp/metadata.json

# Extract data from the fetched metadata
local_ipv4=$(echo "$METADATA" | jq -r '.network.interface[0].ipv4.ipAddress[0].privateIpAddress')
az=$(echo "$METADATA" | jq -r '.compute.location')
vm_id=$(echo "$METADATA" | jq -r '.compute.vmId')

# Generate an HTML file with the extracted data
cat <<EOF > /var/www/html/index.html
<!doctype html>
<html lang="en" class="h-100">
<head>
<title>Details for Azure VM</title>
</head>
<body>
<div>
<h1>Azure Instance Details</h1>
<h1>Samurai Katana</h1>

<p><b>Instance Name:</b> $(hostname -f)</p>
<p><b>Instance Private IP Address:</b> ${local_ipv4}</p>
<p><b>Availability Zone:</b> ${az}</p>
<p><b>Virtual Machine ID:</b> ${vm_id}</p>
</div>
</body>
</html>
EOF

# Remove the temporary file
rm /tmp/metadata.json

VMSS

Basics pt. 1Basics pt. 2DisksNetwork InterfaceNetoworkingScalingHealthUser Data (advanced)

1. Click the "Review + create" button and then "Create" to create the VMSS.
   • copy the public IP address of the VMSS and add http:// to the beginning and paste it into a new tab. your new website should be live.

Congratulations! 🎉

You've successfully completed the lab!

Comments