05-Intersite Connectivity Flashcards
What is VNet peering
Connects two Azure virtual networks
Easy to setup, seamless data transfer, and great performance
What are two types of VNet Peering
Regional and Global
What does VNet Peering use for privacy and isolation
They use Azure backbone
Across what can you VNet peer
You can peer across subscriptions and tenants
What does Gateway Transit and Connectivity allow
Allows peered virtual networks to share the gateway and get access to resources
No VPN gateway is required in the peered virtual network
Default VNet peering provides full conectivity
How to configure VNet Peering
- Allow virtual network access settings
2. Configure forwarded traffic settings
What is Service Chaining?
Leverage user-defined routes and services chaining to implement custom routing
Implement VNet hub with a network virtual appliance or a VPN gateway
Enables to you direct traffic from one virtual network to a virtual appliance, or a virtual network gateway in a peered virtual network, through user-defined routes
Site-to-site connections
Connect on-prem datacenters to Azure virtual networks
VNet-to-VNet connections
Connect Azure virtual networks (custom)
Point-to-site (User VPN) connections
Connect individual devices to Azure virtual networks
How to implement Site-to-Site VPM Connections
- Create VNets and Subnets
- Specify DNS Server
- Create Gateway Subnet
- Create VPN Gateway
- Create Local Network Gateway
- Configure VPN Device
- Create VPN Connection
Where to deploy Azure Firewall Subnet
Deploy into subnet called the “Firewall subnet”
Where to deploy VPN gateway
Deploy into subnet called the “Gateway subnet”
VPN Gateway Configuration
Most VPN types are Route Based
Choice of gateway SKY affects the number of connection you can have and the aggregate throughput benchmark
Associate a virtual network that includes the gateway subnet
Gateway needs a public IP address
VPN types
- Route Based
2. Policy Based
