AZ-900 Microsoft Azure Fundamentals

Describe virtual networking, including the purpose of Azure Virtual Networks, Azure virtual subnets, peering, Azure DNS, Azure VPN Gateway, and Azure ExpressRoute

#AZ-900 Microsoft Azure Fundamentals

Microsoft Azure is a cloud computing platform that provides several infrastructure services, one of which is Azure Virtual Networks (VNet). These are the foundation of your network in Azure, acting as your private network in the cloud. They provide isolation, segmentation, and other network layer features.

In essence, an Azure VNet is a representation of your network in the cloud. It is a private network created by an organization within Azure, used to provide a range of services that run on the same network. The purpose of Azure Virtual Networks is to enable Azure resources, such as VMs, to communicate with each other securely, the internet, and on-premises networks.

Azure Virtual Subnets

Within Azure Virtual Networks, we have Azure virtual subnets, which are a way to divide your Azure Virtual Networks into one or more logical segments. Just as we segment networks in an on-premise environment, we can do the same with VNets. Services and VMs that are part of the same subnet will have direct network connectivity to each other. To further enhance the segregation of the network, Network Security Groups (NSGs) are applied which allows you to define the network traffic that is allowed or denied to and from subnets.

Peering

Peering in Azure is a way of connecting two Azure virtual networks. With peering, you can improve routing efficiency and speed up networking by keeping traffic within the Azure infrastructure. It’s as if the two networks are one when it comes to connectivity, but they still operate as separate units for administration, billing, and compliance purposes.

Azure DNS

The Azure DNS is a hosting service for DNS domains that provides name resolution by using Microsoft Azure infrastructure. By hosting your domains in Azure, you can manage your DNS records using the same credentials, APIs, tools, and billing as your other Azure services. Azure DNS also supports private DNS domains.

Azure VPN Gateway

The Azure VPN Gateway connects your on-premises networks to Azure through Site-to-Site VPNs, similar to setting up and connecting to a remote branch office. The connectivity is secure and uses the industry-standard protocols Internet Protocol Security (IPsec) and Internet Key Exchange (IKE).

Azure ExpressRoute

Azure ExpressRoute lets you extend your on-premises networks into the Microsoft cloud over a private connection facilitated by a connectivity provider. It provides a more reliable, faster, and lower-latency network connection than your typical internet-based connection.

Azure Networking is a vast and important domain in Azure architecture. It offers a variety of crucial services – Azure Virtual Networks, Azure Virtual Subnets, Azure DNS, VPN Gateway, and Azure ExpressRoute, each one playing a different role in managing and controlling cloud network traffic. Understanding their purpose and functionality is a fundamental aspect of mastering Azure cloud services and preparing for the AZ-900 Microsoft Azure Fundamentals Exam.

Practice Test

True or False: Azure Virtual Networks can be used to communicate between resources in the same region.

  • True
  • False

Answer: True.

Explanation: Azure Virtual Networks allow resources to communicate between each other in the same region, segregating them from the rest of the Azure environment.

Which of the following is the purpose of Azure virtual subnets?

  • A. To enable resources to communicate securely with the internet.
  • B. To divide Azure Virtual Networks into smaller networks.
  • C. To establish connections with on-premise networks.
  • D. To encrypt network traffic.

Answer: B. To divide Azure Virtual Networks into smaller networks.

Explanation: Azure virtual subnets divide the Azure Virtual Network into smaller networks to effectively manage and organize resources.

True or False: Peering in Azure is a method of establishing high-speed, low-latency network connections between two subnets in the same Azure Virtual Network.

  • True
  • False

Answer: False.

Explanation: Peering in Azure is a method of establishing high-speed, low-latency network connections between two different Azure Virtual Networks, not within the same network.

Which of the following services is used for translating domain names into IP addresses in Azure?

  • A. Azure VPN.
  • B. Azure DNS.
  • C. Azure Traffic Manager.
  • D. Azure ExpressRoute.

Answer: B. Azure DNS.

Explanation: Azure DNS is a hosting service for DNS domains that provides name resolution using Microsoft Azure infrastructure.

Azure VPN Gateway is used for which of the following?

  • A. Securing virtual networks.
  • B. Creating private connections between Azure datacenters and infrastructure.
  • C. Establishing secure, cross-premises connectivity.
  • D. Encrypting internet traffic.

Answer: C. Establishing secure, cross-premises connectivity.

Explanation: Azure VPN Gateway can be used to establish secure, cross-premises connectivity between your virtual network within Azure and on-premises IT infrastructure.

True or False: Azure ExpressRoute enables you to create private connections between Azure datacenters and infrastructure that’s on your premises.

  • True
  • False

Answer: True.

Explanation: Azure ExpressRoute lets you extend your on-premises networks into the Microsoft cloud over a private connection facilitated by a connectivity provider.

In Azure, virtual subnets are used to __.

  • A. Divide Azure Virtual Networks into smaller networks
  • B. Translate domain names into IP addresses
  • C. Establish high-speed, low-latency network connections between two different Azure Virtual Networks
  • D. Create private connections between Azure Data centres and infrastructure

Answer: A. Divide Azure Virtual Networks into smaller networks.

Explanation: Azure virtual subnets are subdivisions of an Azure Virtual Network, which allows for segmentation and organization within the network.

The purpose of Azure DNS is to __.

  • A. Encrypt internet traffic
  • B. Divide Azure Virtual Networks into smaller networks
  • C. Translate domain names into IP addresses
  • D. Establish secure, cross-premises connectivity

Answer: C. Translate domain names into IP addresses.

Explanation: The Azure DNS is a hosting service for DNS domains that provides name resolution using the Microsoft Azure infrastructure.

Azure VPN Gateway is used to __.

  • A. Translate domain names into IP addresses
  • B. Establish secure, cross-premises connectivity
  • C. Divide Azure Virtual Networks into smaller networks
  • D. Create private connections between Azure Data centres and infrastructure

Answer: B. Establish secure, cross-premises connectivity.

Explanation: Azure VPN Gateway connects your on-premises networks to Azure via site-to-site VPNs like a bridge.

True or False: Azure ExpressRoute prevents your data from passing over the public internet.

  • True
  • False

Answer: True.

Explanation: Azure ExpressRoute allows for a direct secure and reliable connection to Microsoft Cloud services such as Azure, Office 365, and Dynamics 365 bypassing the public internet.

Interview Questions

What is the purpose of Azure Virtual Networks?

Azure Virtual Networks (VNet) enables many types of Azure resources, such as Azure Virtual Machines (VM), to securely communicate with each other, the internet, and on-premises networks.

What are Azure virtual subnets?

A subnet is a range of IP addresses in your VNet. You can launch Azure resources in a specified subnet.

What is the purpose of Azure VPN Gateway?

Azure VPN Gateway connects your on-premises networks to Azure through Site-to-Site VPNs in a similar way that you set up and connect to a remote branch office.

Describe the function of Azure DNS.

Azure DNS is a hosting service for DNS domains, providing name resolution using Microsoft Azure infrastructure. By hosting domains in Azure, you can manage DNS records using the same credentials, APIs, tools, and billing as your other Azure services.

What is Azure ExpressRoute?

Azure ExpressRoute lets you extend your on-premises networks into the Microsoft cloud over a private connection facilitated by a connectivity provider.

What is the functionality of peering in Azure?

Peering in Azure refers to the ability to connect two Azure virtual networks. Once peered, the virtual networks appear as one for connectivity purposes.

Why are Azure Virtual Networks important for Azure Virtual Machines (VM)?

Azure Virtual Networks are important for Azure Virtual Machines as they are used to provide the VM with a private IP and to establish secure communication with other resources on the internet and on-premise networks.

Can Azure DNS be used with non-Azure services?

Yes, Azure DNS can be used to host the DNS for any domain, including domains used for services located outside of Azure.

What types of ExpressRoute circuits are available?

Two types of ExpressRoute circuits are available: Metered data and Unlimited data.

What does a VPN Gateway do in Azure Virtual Network?

A VPN Gateway sends encrypted traffic between an Azure virtual network and an on-premises location over the public internet.

Related Post

AZ-900 Microsoft Azure Fundamentals

Describe Azure Resource Manager and Azure Resource Manager templates (ARM templates)

extutorials.com
AZ-900 Microsoft Azure Fundamentals

Describe the purpose of Azure Arc

extutorials.com
AZ-900 Microsoft Azure Fundamentals

Identify appropriate use cases for each cloud service (IaaS, PaaS, SaaS)

extutorials.com

Leave a Reply

Your email address will not be published. Required fields are marked *