Weekly Azure Roundup: Faster AI, Safer Containers, Hybrid Control

The latest Azure updates reflect improvements in performance, greater infrastructure flexibility, additional security and governance features, and developer workflow enhancements. These changes span compute, networking, containers, hybrid cloud architecture, data management, process automation, security, and designer tools.

Azure Compute, Networking, and Performance Engineering

Azure and NVIDIA achieved 1.1 million tokens/sec on ND GB300 v racks, continuing infrastructure improvements. Analysis of HBv5-series VMs presents benchmark data and workload advice. Azure Kubernetes Service now offers eBPF host routing via Cilium, and ACNS introduces metrics filtering to simplify observability and control costs. Firewall, NSG, and VXLAN management guides support networking best practices.

• Azure and NVIDIA Set Industry Record: 1.1M Tokens/sec on ND GB300 v Rack
• Performance and Scalability of Azure HBv5-series Virtual Machines
• High-Performance AI Networking on AKS: eBPF Host Routing with Azure CNI Powered by Cilium
• Reduce Metrics Noise and Costs with Container Network Metrics Filtering in ACNS for AKS
• Efficient Azure Firewall and NSG Rule Management with Terraform and CSV
• Extending Layer-2 Networks Over Layer-3 IP with VXLAN: MTU, Overlay, and BFD Best Practices

Azure Containers: Scale, Security, and Developer Workflow

Azure Container Instances now support up to 31 vCPUs and 240GB RAM, enabling larger analytics and AI workloads. Azure Container Registry’s Attribute-Based Access Control (ABAC) reaches general availability, allowing more detailed permissions management. The Azure Developer CLI receives layered infrastructure updates for smoother deployment. Dapr and OpenCV/Python app tutorials improve microservice reliability and enable practical cloud-native DevOps.

• General Availability of Larger Container Sizes on Azure Container Instances
• Azure Container Registry Now Supports Entra ABAC for Repository and Namespace Permissions
• Azure Developer CLI: Azure Container Apps Dev-to-Prod Deployment with Layered Infrastructure
• Simplifying Microservice Reliability with Dapr
• Deploying a Low-Light Image Enhancer (Python + OpenCV) on Azure App Service

Hybrid, Sovereign, and Enterprise Cloud with Azure Local and Sovereign Cloud

EU data residency options for Azure AI, open-source model compatibility on NVIDIA GPUs, and Copilot processing in-country further support regulated sectors. Azure Local and Arc offer SDN, network, and security management for hybrid clusters, as well as resource bridging for disaster recovery. Azure Key Vault now manages clusters without Active Directory. The Local Well-Architected Review framework, now generally available, provides operational guidance and checklists for local environments. Sovereign Landing Zones automation helps partners meet regulatory requirements.

• Microsoft Expands Sovereign Cloud Capabilities with New Services and AI Integration
• General Availability of Software Defined Networking (SDN) on Azure Local with Azure Arc
• Azure Local Well-Architected Framework and Review Assessment
• Announcing Local Identity with Azure Key Vault: AD-Free Cluster Deployment and Management

Azure Storage, Data, and Observability

Azure Ultra Disk gains reduced latency, instant snapshots, and per-GiB billing, continuing the focus on optimization. Silk SDS and Echo allow automated storage solutions with more flexibility for development and testing. NetApp Files cache volumes offer improved data sharing for chip design workflows. Microsoft Fabric Data Warehouse now features OPENROWSET for simple ingestion and transformation, while Log Analytics introduces advanced query diagnostics for troubleshooting.

• The New Era of Azure Ultra Disk: Next-Gen Mission-Critical Block Storage
• Enhancing Azure Data Management with Silk Software-Defined Storage and Silk Echo for AI
• Boosting Hybrid Cloud Data Efficiency for EDA with Azure NetApp Files Cache Volumes
• Efficient Data Ingestion in Microsoft Fabric Data Warehouse with OPENROWSET
• Enhanced Query Diagnostics in Azure Log Analytics

Integration, Eventing, and Automation Ecosystem

Updates for Logic Apps introduce improved document chunking, AI agents, and webhook authentication features, supporting continued workflow and automation enhancements. The RabbitMQ connector and new monitoring solutions help create unified integrations for hybrid and AI-powered environments. Guidance for Kafka lag monitoring increases observability, while the NSG Flow Logs migration checklist assists with transitioning to VNet Flow Logs.

• Logic Apps Aviators Newsletter - November 2025
• Advanced Kafka Lag Monitoring Techniques for Azure Event Hubs
• Azure VNet Flow Logs Migration and Traffic Analytics with Terraform

Security, Identity, and Compliance

Azure Container Registry ABAC reaches general availability, supporting fine-grained permissions for zero-trust and supply chain integrity. Privacy and compliance guides clarify best practices, while Entra ID coverage continues to support legacy migrations and cloud-native identity management.

• Azure Container Registry Now Supports Entra ABAC for Repository and Namespace Permissions
• How Microsoft Azure Ensures Data Privacy and Global Compliance
• Identity in Azure: Understanding Azure AD, Authentication, and Authorization

Deployment, Migration, and Architecture Best Practices

Deployment guides detail ways to implement third-party firewalls in Landing Zones, helping organizations achieve high availability and advanced security. Azure VMware Solution Gen 2 migration series continues, providing steps and operational advice for smooth transitions and regulatory compliance.

• Deploying Third-Party Firewalls in Azure Landing Zones: Design, Configuration, and Best Practices
• Migrate & Modernize Your VMware Platform Using Azure VMware Solution Gen 2

Other Azure News

Azure Weekly Update covers new tools, VM and DevOps improvements, and a preview of Eventhouse KQL Database’s entity diagram for managing schemas. Instructions for Dev Box Catalog deployment using Terraform and GitHub support creating repeatable virtual workstations. App Service Managed Certificates now work for non-public sites, broadening support. Guides for troubleshooting Azure Virtual Desktop sign-in issues after tenant migration assist with practical authentication problems.

• Azure Weekly Update: November 7, 2025
• Entity Diagram in Eventhouse KQL Database (Preview)
• Deploying and Syncing Microsoft Dev Box Catalogs with GitHub using Terraform
• October 2025 Update: App Service Managed Certificates Support for Non-Publicly Accessible Sites
• Troubleshooting Azure Virtual Desktop Sign-In Failures After Tenant Migration