2013年7月31日

[Azure]設定Windows Azure Alert

  • 切換到Settings、Alert,按下方的加號開始新增規則

image

  • 輸入相關資料,服務型態有Cloud Service、WebSite、VM與Mobile Service可以選,這邊我先測試WebSites;按下一步。

image

  • 由於要監控的是網站服務,因此在網站服務上必須要先啟用Endpoint Monitoring的機制。這裡我已經啟用了,因此可以選擇要監測的端點;如果還沒啟用的,可以參考這一篇的方式啟用。這裡我設定的是,如果15分鐘內的平均Response Time大於等於10秒,則發出警告。另外,這裡除了可以設定要寄通知給Service Admin及Co-Admin外,也可以指定要送警告給其他的使用者。

image

  • 設定完成

image

2013年7月30日

[Azure]Setup Point-to-Site VPN

Setup Point-to-Site VPN is pretty easy follow this MSDN instruction.

  • First thing is to create a Virtual Network thru management portal, and check “Point-to-Site” checkbox

image

  • Follow the wizard and finish the creating process, don’t forget to add “Gateway Address space” in the last step

image

  • Upon create,click “Create Gateway” to create a gateway tenant for this Virtual Network

image

  • After the gateway created,we then need to upload our certificate to Windows Azure;Remember,Windows Azure P2S VPN authenticate clients by certificate,so we need a root certificate uploaded to Windows Azure, and for each client, we need to generate a client certificate for it. To generate  a root certificate, launch visual studio command prompt and execute the following command:

makecert -sky exchange -r -n "CN=Michael Azure Root Cert" –pe -a sha1 -len 2048 -ss My -sk MichaelCAContainer azure_root.cer

This will create a root certificate and save in current working directory. We then can double click on it to bring up installation wizard, follow the instruction to install the root certificate to “My “ store

  • Then again, execute the following command to create a client certificate

makecert.exe -n "CN=My Azure P2S Client Cert" -pe -sky exchange -m 96 -ss My -in "Michael Azure Root Cert" -is my -a sha1

Again, double click on it and follow the wizard to install it into “My” certificate store

  • Now, go to Azure portal, go to VNet and switch to Certificate tab, click “Upload” to upload root certificate

image

  • Go back to Dashboard, now we have completed all required steps, we can now export client certificate to PFX format, dispatch it to clients so they can connect to WA VNET
  • Once client certificate is installed on client machine, we can then go to WA management portal, and download appreciate package and dispatch it to client machine

image

  • Upon download, double click on it to install the package

image

  • Once installed, you can open up your network adapter panel, the P2S VPN is there

image

  • Click connect, a VPN connection windows shows up, click on Connect

image

  • Click on OK

image

  • It takes couple seconds to establish the connection

image

Blog Archive

About Me