Azure FrontDoor Flashcards

1
Q

What is Azure Front Door?

A

Azure Front Door is a scalable and secure entry point for fast delivery of global applications, offering Layer 7 load balancing and security.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What layer of the OSI model does Azure Front Door operate on?

A

Azure Front Door operates at Layer 7 (Application Layer) of the OSI model.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What are the main use cases for Azure Front Door?

A

Main use cases include global load balancing, application acceleration, and enhanced security with features like Web Application Firewall (WAF).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What types of load balancing does Azure Front Door provide?

A

Azure Front Door provides Layer 7 load balancing for HTTP/HTTPS requests based on URL, path, and host headers.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

How does Azure Front Door integrate with Azure Web Application Firewall (WAF)?

A

Azure Front Door integrates with WAF to protect applications from web vulnerabilities like SQL injection and XSS attacks.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What are the two Azure Front Door service tiers?

A

The two tiers are Standard and Premium. Premium includes advanced security features like WAF, Bot Protection, and integration with private endpoints.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What kind of routing methods are available in Azure Front Door?

A

Azure Front Door offers latency-based routing, priority-based routing, and weighted round-robin routing.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

How does Azure Front Door support disaster recovery (DR)?

A

Azure Front Door supports DR through global load balancing and failover across multiple regions.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What security features does Azure Front Door offer?

A

Security features include TLS termination, WAF, DDoS protection, and integration with Azure Private Link.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

How does Azure Front Door integrate with Azure Entra ID for RBAC?

A

Azure Front Door integrates with Azure Entra ID, enabling role-based access control (RBAC) for managing access to resources.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

How does Azure Front Door improve application availability?

A

Azure Front Door improves availability by providing global load balancing, automatic failover, and health probes to monitor endpoint health.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is the benefit of using Azure Front Door for global applications?

A

Azure Front Door provides low latency and high availability for global applications by routing traffic to the nearest regional endpoint.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is session affinity in Azure Front Door?

A

Session affinity, also called cookie-based affinity, ensures that client requests are routed to the same backend during a session.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

How does Azure Front Door handle SSL termination?

A

Azure Front Door supports SSL/TLS termination at the edge, reducing load on backend servers.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

How does Azure Front Door ensure security for backend services?

A

Azure Front Door integrates with Azure Private Link to securely connect to private backend services.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What is the role of health probes in Azure Front Door?

A

Health probes monitor backend endpoints for availability and help Azure Front Door to route traffic only to healthy endpoints.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

What is the role of URL-based routing in Azure Front Door?

A

URL-based routing directs client requests to different backend pools based on the URL path, improving application efficiency.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

How does Azure Front Door integrate with Azure Traffic Manager?

A

Azure Front Door can work alongside Azure Traffic Manager to combine Layer 7 and DNS-based traffic management.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

What disaster recovery options does Azure Front Door support?

A

Azure Front Door supports DR through multi-region failover and automatic rerouting of traffic to available regions.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

How does Azure Front Door handle DDoS attacks?

A

Azure Front Door offers built-in DDoS protection by distributing traffic globally and absorbing large-scale attacks.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

What is the difference between Azure Front Door Standard and Premium tiers?

A

Premium tier includes advanced security features like WAF policies, Bot Protection, and private link integration, while Standard offers core CDN and routing capabilities.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

How does Azure Front Door improve application performance?

A

Azure Front Door accelerates application performance by routing traffic to the nearest regional backend, reducing latency.

23
Q

What is the importance of Azure Front Door’s multi-region deployment?

A

Multi-region deployment ensures high availability and business continuity by automatically failing over to healthy regions.

24
Q

How does Azure Front Door integrate with Azure CDN?

A

Azure Front Door integrates with Azure CDN to provide content delivery acceleration and enhanced web security features.

25
Q

What type of applications benefit most from Azure Front Door?

A

Global applications with users in multiple regions, requiring low latency and high availability, benefit the most.

26
Q

What governance features are available in Azure Front Door?

A

Governance features include RBAC via Azure Entra ID, policy management, and monitoring through Azure Monitor and Log Analytics.

27
Q

How can you monitor Azure Front Door traffic?

A

Azure Front Door traffic can be monitored using Azure Monitor, Log Analytics, and Metrics for insights into performance and availability.

28
Q

What is WAF policy in Azure Front Door?

A

WAF policy allows for custom rules and managed rule sets to protect web applications from common threats like OWASP Top 10.

29
Q

How does Azure Front Door handle bot protection?

A

Azure Front Door Premium tier includes bot protection to identify and block malicious bots from accessing applications.

30
Q

What are routing rules in Azure Front Door?

A

Routing rules define how traffic is routed from the front-end host to the backend pool based on conditions like URL path and HTTP headers.

31
Q

What kind of SSL/TLS support does Azure Front Door offer?

A

Azure Front Door provides full SSL/TLS support, including automatic certificate management and HTTPS-only traffic enforcement.

32
Q

How does Azure Front Door provide scalability?

A

Azure Front Door provides global scalability by distributing traffic across multiple backend servers and regions.

33
Q

What is path-based routing in Azure Front Door?

A

Path-based routing allows different parts of the URL path to be routed to different backend pools.

34
Q

What is the role of backend pools in Azure Front Door?

A

Backend pools group multiple backend endpoints, allowing Azure Front Door to distribute traffic and ensure availability.

35
Q

How does Azure Front Door integrate with Azure Virtual Network?

A

Azure Front Door Premium integrates with Azure Virtual Network using Private Link to securely connect to backend services.

36
Q

How does Azure Front Door enhance security with Azure Private Link?

A

Azure Private Link in Front Door Premium allows for secure connections to private backend services, preventing data exposure to the public internet.

37
Q

How does Azure Front Door support zero-downtime deployments?

A

Azure Front Door supports zero-downtime deployments by routing traffic to healthy backends while updates are being applied.

38
Q

What are custom domains in Azure Front Door?

A

Custom domains allow you to map your Front Door configuration to a user-friendly domain name, enhancing brand visibility.

39
Q

How can Azure Front Door improve the security of APIs?

A

Azure Front Door can protect APIs using WAF rules, DDoS protection, and rate-limiting to prevent abuse.

40
Q

What integration options does Azure Front Door offer?

A

Azure Front Door integrates with services like Azure App Service, Azure Kubernetes Service, and third-party origins for flexible application delivery.

41
Q

How does Azure Front Door handle global load balancing?

A

Azure Front Door globally balances traffic by routing requests to the nearest healthy backend endpoint, improving performance.

42
Q

What is the purpose of backend health monitoring in Azure Front Door?

A

Backend health monitoring ensures traffic is routed only to available backends, improving availability and performance.

43
Q

What are backend pools in Azure Front Door?

A

Backend pools are a collection of backend servers to which Azure Front Door routes traffic based on routing rules.

44
Q

How does Azure Front Door improve content delivery?

A

Azure Front Door improves content delivery by caching content at global edge locations, reducing latency for end-users.

45
Q

What role does RBAC play in managing Azure Front Door?

A

RBAC ensures that access to Azure Front Door resources is controlled and managed using roles in Azure Entra ID.

46
Q

Does Azure Front Door support IPv6?

A

Yes, Azure Front Door supports IPv4 and IPv6, ensuring broad compatibility and future-proofing for network access.

47
Q

Explain how Azure Front Door works?

A

Azure Front Door uses edge node and anycast IP to create endpoints close to the user, Azure Front Door can terminate layer 7 using split TCP for improved performance, it alos provides dynamic and static content caching

48
Q

Explain an origan group?

A

An Azure Front Door origin group is a collection of backend services (origins) that serve traffic based on load balancing and health checks. It supports multiple routing strategies like priority-based or weighted distribution and provides failover for high availability. Health probes monitor the origins to ensure reliability.

49
Q

When using Azure Front Door standard tier, can I have DDOS?

A

No, it is a premium feature

50
Q

When using Azure Front Door premium, is WAF a premium or standard tier capability?

A

It is a premium feature

51
Q

Can I have a Private Link when using the Azure Front Door standard tier?

A

It is a premium feature.

52
Q

What types of caching are supported?

A
  1. Query string
53
Q

I am concerned about managing Certificates for Azure Front Door; how can I automatically renew certificates and quickly provide secure certificate management?

A

For Azure Front Door Standard, managed identities are used with Azure Key Vault to securely handle TLS/SSL certificates without needing to manage secrets directly.

54
Q

For Azure Front Door, how can I get automatic advice for the service?

A

Azure Front Door integrates with Azure Advisor