With Azure Container Registry, or ACR, we get a lot of great capabilities to host our Docker images in the Azure cloud. With that, as with everything else, comes security concerns we should not overlook. In this post I'm exploring how we can lock down all access to our ACR by default, and then enable access based on an IP address or range of IP addresses. This is similar to what I've already explained in another post about Secure your Azure Storage Accounts with restrictions based on public IP addresses. If you haven't seen that, take a look there how…
All posts in “Containers”
Jussi Roine and Tobias Zimmergren journeys into the land of containers and demonstrates how to build a .NET Core API, hosted in Azure Container Instances and secured using HTTPS with Application Gateway. Tag along!…
Azure Container Instances with Azure Managed Identity, accessing data in a Key Vault without using any stored credentials - all done in C# with .NET Core. Tag along!…
A full guide to how you can define a Secret volume mount to your Azure Container Instances, and how you can read these secrets using C# with .NET Core. Stay secure out there!…
In this post I'm talking about how you can use something called secureValue, or secure environment variables, with your Azure Container Instance. Given the sensitive nature of some data you put into the variables, it is a good idea to understand different ways to protect some of that data - with secure environment variables you can hide the values from the UI and API calls to the ACI, and from the Azure Portal. BackgroundRunning your applications in the cloud has become increasingly popular. Migrating your .NET applications to .NET Core and hosting them as Docker images in the cloud is…
Guide to running .NET Core apps as containers in Azure Container Instances. Step by step, from ground to cloud with Tobias Zimmergren!…
In this article, I am talking about how to share a mounted Azure file share across multiple containers in your deployments in Microsoft's hosted Kubernetes offering, AKS.This is a mini-series with two parts.(this post) How to: Mount an Azure Storage File share to containers in AKS.Processing data from SQLite hosted in an Azure File share, running in Azure Kubernetes Services.Step by stepTo get started, we'll need an Azure Storage account and an Azure Kubernetes Services cluster up and running. Create an Azure file shareFor the sake of ease and to keep a somewhat visual appeal in…
Here comes a short tip of the day post about AKS. A common ask from people in the community and end customers using the Azure Container Services is to know what VM-sizes are supported by AKS. Not all services and regions offer support for all sizes, and sometimes it's a bit tricky to get to know which Azure service has support for what size of VM's. Looking for this information myself, I came across some details in the GitHub repository for the Microsoft Azure Container Service Client, and found this enumeration that contains the supported VM sizes. Also, as per…