Azure Compute Resources

Question 1

Virtual Machine Extensions

Answer 1

Small applications that provide post-deployment config and automation tasks on Azure VMs.

(e.g., software installation, anti-virus protection, configuration script inside)

Question 2

Naming VMs

Answer 2

A good convention is to include environment, location, instance, product/service, role.

(e. g., devusc-webvm01) dev environment, located in US south central, for web dev
(e. g., prodausse-sql03) prod in Australia south east, for sql, 3rd instance.

Question 3

VMs - Compute costs

Answer 3

Priced per hour
Charged per minute

Stopping and deallocating a VM releases the hardware and incurs no cost

Question 4

VMs - Compute costs

Answer 4

Priced per hour
Charged per minute

Stopping and deallocating a VM releases the hardware and incurs no cost

Question 5

VM Storage costs

Answer 5

Charged for the storage a VM uses.

Status of VM has no relation to storage charges (i.e., a stopped/deallocated VM still incurs storage costs)

Question 6

VMs disks

Answer 6

All Azure VMs have at least two disks.

OS disk (C:\)
Temp disk (D:\)
Can have one or mare data disks

Question 7

Connecting to virtual machines - windows os

Answer 7

Remote Desktop Protocol (RDP) - establish a GUI

Windows Remote Management (WinRM) - establish a command line session to an Azure VM that runs any supported version of windows.

Question 8

connecting to virtual machines (linux)

Answer 8

SSH is an encrypted connection protocol that allows secure sign-ins over unsecured connections. SSH is the default connection protocol for Linux VMs hosted in Azure.

Question 9

VMs : Update Domain

Answer 9

An update domain (UD) is a group of nodes that are upgraded together during the process of a service upgrade (rollout).

Question 10

VMs: Fault Domain

Answer 10

A fault domain (FD) is a group of nodes that represent a physical unit of failure. A fault domain defines a group of virtual machines that share a common set of hardware, switches, that share a single point of failure.

Question 11

Availability Zones: Zonal Services

Answer 11

Pins the resource to a specific zone (for example, virtual machines, managed disks, Standard IP addresses).

Question 12

Availability Zones: Zone-redundant services.

Answer 12

Platform replicates automatically across zones (for example, zone-redundant storage, SQL Database).

Question 13

VM extensions

Answer 13

Azure virtual machine extensions are small applications that provide post-deployment configuration and automation tasks on Azure VMs.

(e.g., if a virtual machine requires software installation, anti-virus protection, or a configuration script inside, a VM extension can be used)

Question 14

Custom Script Extensions (CSE)

Answer 14

used to automatically launch and execute virtual machine customization tasks post configuration.

Your script extension may perform simple tasks such as stopping the virtual machine or installing a software component. However, the script could be more complex and perform a series of tasks.

Question 15

Desired State Configuration (DSC)

Answer 15

is a management platform in Windows PowerShell. DSC enables deploying and managing configuration data for software services and managing the environment in which these services run.

Question 16

Web App Scaling: Scale Up

Answer 16

You scale up by changing the pricing tier of the App Service plan that your app belongs to.

Get more CPU, memory, disk space, and extra features like dedicated virtual machines (VMs), custom domains and certificates, staging slots, autoscaling, and more.

Question 17

Web App Scaling : Scale Out

Answer 17

Increase the number of VM instances that run your app. You can scale out to as many as 30 instances, depending on your pricing tier.

The scale instance count can be configured manually or automatically (autoscale). Autoscale is based on predefined rules and schedules.

Question 18

App Service Plan Scaling: Metric-Based

Answer 18

Metric-based rules measure application load and add or remove VMs based on that load.

For example, do this action when CPU usage is above 50%. Examples of metrics are CPU time, Average response time, and Requests.

Question 19

App Service Plan Scaling: Time-based.

Answer 19

Time-based (schedule-based) rules allow you to scale when you see time patterns in your load and want to scale before a possible load increase or decrease occurs.

For example, trigger a webhook every 8am on Saturday in a given time zone.

Question 20

Creating an App Service: config choices

Answer 20

Requires a resource group and service plan.

Name: Must be unique
Publish: Host code or a docker container
Runtime stack: The stack to run the app (language, SDK)
Operating System: Linux or Windows
Region: ...

Question 21

App Service: Deployment Slots

Answer 21

Deployment slots are live apps with their own hostnames. App content and configurations elements can be swapped between two deployment slots, including the production slot.

Question 22

App Service: Application Insights

Answer 22

A feature of Azure Monitor that monitors your live applications.

(request rates, response times, failure rates, dependency rates, page views, load counts, user and session counts, performance counters)

Question 23

Containers vs VMs: Isolation

Answer 23

Container: lightweight isolation from the host and other containers

VMs: Complete isolation from the host OS and other VMs (strong security boundary)

Question 24

Containers vs VMs: OS

Answer 24

Containers: Runs the user mode portion of an operating system and can be tailored to contain just the needed services for your app.

VMs: Runs a complete operating system including the kernel, thus requiring more system resources (CPU, memory, and storage).

Question 25

Containers vs VMs: Deployment

Answer 25

Containers: Deploy individual containers by using Docker via command line; deploy multiple containers by using an orchestrator such as Azure Kubernetes Service.

VMs: Deploy individual VMs by using Windows Admin Center or Hyper-V Manager; deploy multiple VMs by using PowerShell or System Center Virtual Machine Manage

Question 26

Containers vs VMs: Persistent Storage

Answer 26

Containers: Use Azure Disks for local storage for a single node, or Azure Files (SMB shares) for storage shared by multiple nodes or servers.

VMs: Use a virtual hard disk (VHD) for local storage for a single VM, or an SMB file share for storage shared by multiple servers.

Question 27

Containers vs VMs: Fault Tolerance

Answer 27

Containers: If a cluster node fails, any containers running on it are rapidly recreated by the orchestrator on another cluster node.

VMs can fail over to another server in a cluster, with the VM’s operating system restarting on the new server.

Question 28

Azure Container Instances: Container Group

Answer 28

The top-level resource in Azure Container Instances.

• a collection of containers that get scheduled on the same host machine
• containers in a container group share a lifecycle, resources, local network, and storage volumes

Question 29

Docker Container:

Answer 29

Container is an instance of a Docker image. It represents the execution of a single application, process, or service. It consists of the contents of a Docker image, an execution environment, and a standard set of instructions.

Question 30

Docker Container Image:

Answer 30

refers to a package with all the dependencies and information required to create a container. The dependencies include frameworks and the deployment and execution configuration that a container runtime uses

Question 31

Container Build

Answer 31

refers to the action of building a container image based on the information and context provided by the Dockerfile. The build also includes any other files that are needed.

Question 32

Docker Pull

Answer 32

Pull refers to the process of downloading a container image from a container registry.

Question 33

Docker Push

Answer 33

Push refers to the process of uploading a container image to a container registry.

Question 34

Dockerfile

Answer 34

refers to a text file that contains instructions on how to build a Docker image. The Dockerfile is like a batch script. The first line identifies the base image. The rest of the file includes the build actions.

Question 35

AKS: Pools

Answer 35

Pools are groups of nodes with identical configurations.

Question 36

AKS Nodes

Answer 36

Nodes are individual virtual machines running containerized applications.

Question 37

AKS Pods

Answer 37

Pods are a single instance of an application. A pod can contain multiple containers.

Question 38

AKS: Container

Answer 38

is a lightweight and portable executable image that contains software and all of its dependencies.

Question 39

AKS Deployment

Answer 39

Deployment has one or more identical pods managed by Kubernetes.

Question 40

AKS Manifest

Answer 40

Manifest is the YAML file describing a deployment.

Question 41

AKS Kubernetes cluster is divided into two components:

Answer 41

Azure-managed nodes, which provide the core Kubernetes services and orchestration of application workloads.

Customer-managed nodes that run your application workloads.

Question 42

AKS: Kubelet

Answer 42

the Kubernetes agent that processes the orchestration requests from the Azure-managed node, and scheduling of running the requested containers.

Question 43

AKS: kube-proxy

Answer 43

Virtual networking is handled by the kube-proxy on each node. The proxy routes network traffic and manages IP addressing for services and pods.

Question 44

AKS: Container Runtime

Answer 44

The container runtime is the component that allows containerized applications to run and interact with additional resources such as the virtual network and storage.

Question 45

AKS Networking: Cluster IP

Answer 45

an internal IP address for use within the AKS cluster. Good for internal-only applications that support other workloads within the cluster

Question 46

AKS Networking: NodePort

Answer 46

Creates a port mapping on the underlying node that allows the application to be accessed directly with the node IP address and port.

Question 47

AKS LoadBalancer

Answer 47

Creates an Azure load balancer resource, configures an external IP address, and connects the requested pods to the load balancer backend pool. To allow customers traffic to reach the application, load-balancing rules are created on the desired ports.

Question 48

AKS ExternalName

Answer 48

ExternalName - Creates a specific DNS entry for easier application access.

Question 49

AKS Storage: Volumes

Answer 49

A volume represents a way to store, retrieve, and persist data across pods and through the application lifecycle.

Azure Disks can be used to created a Kubernetes DataDisk resource.

Azure Files can be used to mount an SMB 3.0 share backed by Azure Storage account to pods.

Question 50

AKS Storage persistent volumes

Answer 50

A persistent volume (PV) is a storage resource created and managed by the Kubernetes API that can exist beyond the lifetime of an individual pod

Question 51

AKS Storage classes

Answer 51

To define different tiers of storage, such as Premium and Standard, you can create a StorageClass.

The StorageClass also defines the reclaimPolicy.

This reclaimPolicy controls the behavior of the underlying Azure storage resource when the pod is deleted and the persistent volume may no longer be required.

Question 52

AKS Storage: Persistent Volume Claims

Answer 52

A PersistentVolumeClaim requests either Disk or File storage of a particular StorageClass, access mode, and size.

A PersistentVolume is bound to a PersistentVolumeClaim once an available storage resource has been assigned to the pod requesting it. There is a 1:1 mapping of persistent volumes to claims.

Question 53

AKS Scaling (HPA)

Answer 53

Kubernetes uses the horizontal pod autoscaler (HPA) to monitor the resource demand and automatically scale the number of replicas.

By default, the horizontal pod autoscaler checks the Metrics API every 30 seconds for any required changes in replica count.

When changes are required, the number of replicas is increased or decreased accordingly. Horizontal pod autoscaler works with AKS clusters that have deployed the Metrics Server for Kubernetes 1.8+.

Question 54

AKS Cluster autoscaler

Answer 54

To respond to changing pod demands, Kubernetes has a cluster autoscaler that adjusts the number of nodes based on the requested compute resources in the node pool.

Question 55

Azure Automation State Configuration

Answer 55

Azure Automation State Configuration is an Azure service built on PowerShell.

Used to make sure that the virtual machines (VMs) in a cluster are in a consistent state, with the same software installed and the same configurations.

Question 56

PowerShell DSC

Answer 56

Is a declarative management platform that Azure Automation State Configuration uses to configure, deploy, and control systems.

You specify the desired state and let DSC do the work to get there.

Question 57

The local configuration manager (LCM)

Answer 57

…is a component of the Windows Management Framework (WMF) on a Windows operating system.

The LCM is responsible for updating the state of a node, like a VM, to match the desired state.

Question 58

Every time the The local configuration manager (LCM) runs, it completes the following steps:

Answer 58

Get: Get the current state of the node.
Test: Compare the current state of a node against the desired state by using a compiled DSC script (.mof file).
Set: Update the node to match the desired state described in the .mof file.
You configure the LCM when you register a VM with Azure Automation.

Question 59

The local configuration manager (LCM) - Push mode:

Answer 59

Push mode: An administrator manually sends, or pushes, the configurations to one or more nodes. The LCM makes sure that the state on each node matches what the configuration specifies.

Question 60

The local configuration manager (LCM) - Pull mode

Answer 60

Pull mode: A pull server holds the configuration information.

The LCM on each node polls the pull server at regular intervals, by default every 15 minutes, to get the latest configuration details.

These requests are denoted as step 1 in the following diagram. In step 2, the pull server sends the details about any configuration changes back to each node.