06-Network Traffic Management

Question 1

What are System Routes

Answer 1

Direct network traffic between virtual machines, on-prem networks, and the Internet

• Traffic bet VMs in the same subnet
• Between VMs in different subnets in the same virtual network
• Data flow from VMs to the Internet
• Communication between VMs using VNet-to-VNet VPN
• Site-to-Site and ExpressRoute communication through the VPN gateway

Question 2

What are User Defined Routes

Answer 2

Set of rules, called routes that specify how packets should be routed in a virtual network

Custom routes that control network traffic by defining routes that specify the next hop of the traffic flow

Next hope can be virtual network gateway, virtual network, internet, or virtual appliance

Question 3

What are Service Endpoints

Answer 3

Limit network access to specific subnets and IP addresses

Improved security for your Azure service resources

Optimal routing for Azure service traffic from our virtual network

Endpoints use the Microsoft Azure backbone network

Simple to set up with less management overhead

Question 4

What is Private Line

Answer 4

Private connectivity to services on Azure. Traffic remains on the Microsoft network, with no public internet access

Integration with on-prem and peered networks

In event of security incident within your network, only the mapped resource would be accessible

Question 5

What is Azure Load Balancer

Answer 5

Distributes inbound traffic to backend resource using load-balancing rules and health probes

Can be used for both inbound/outbound scenarios

Two types: Public and Internal

Question 6

Public Load Balancer

Answer 6

Maps public IP addresses and port number of incoming traffic to VM’s private IP address and port number, and vice versa

Apply load balancing rules to distribute traffic across VMs or services

Question 7

What is Internal Load Balancer

Answer 7

fill in

Question 8

Load Balancer SKUs

Answer 8

Basic SKU and Standard SKU

Question 9

Backend Pools

Answer 9

To distribute traffic, a back-end pool contains the IP addresses of the virtual NICs that are connected to the load balancer

Question 10

What are Load Balancer Rules

Answer 10

Maps a frontend IP and port combination to a set of backend IP addresses and port combination

Rules can be used in combination with NAT rules

A NAT rule is explicitly attached to a VM (or network interface) to complete the path to the target

Question 11

What is Session Persistence

Answer 11

Specified how client traffic is handled

None requests can be handled by any virtual machine

Client IP requests will be handled by the same virtual machine

Client IP and protocol specifies successive requests from the same address and protocol will be handled by the same virtual machine

Question 12

Health Probes

Answer 12

Allow load balancer to monitor status of app

Dynamically adds/removes VMs from load balancer

Fill in

Question 13

Application Gateway

Answer 13

Manages web app requests

Routes traffic to a pool of web servers based on the URL of a request

Web servers can be Azure virtual machines, Azure virtual machine scale sets, Azure App Service, and even on-prem servers

Question 14

Path-based routing

Answer 14

fill in

Question 15

Multiple-site routing

Answer 15

fill in

Question 16

What are Application Gateway Components

Answer 16

Frontend IP

Listeners

Routing rules

Backend pools

Web application firewall (optional)

Health probes