Configure and Manage Virtual Networking Flashcards
Azure reserves 5 IP addresses with each subnet
subnet
x.x.x.0
What is this reserved for ?
the Network address
Azure reserves 5 IP addresses with each subnet
subnet
x.x.x.255
What is this reserved for ?
the network broadcast address
Azure reserves 5 IP addresses with each subnet
subnet
x.x.x.1
What is this reserved for ?
the default gateway
Azure reserves 5 IP addresses with each subnet
subnet
x.x.x.2 and x.x.x.3
What are these reserved for ?
mapping the Azure DNS IPs to the VNET space
What is a default gateway ?
The IP address for the router that connects your network to other network segments, serving as an exit point for all packets that have a destination outside your network
When you create and configure new IP addresses, what are the three dimensions you must define ?
Public or private
Static assignment or dynamic assignment
IPV4 or IPV6 or both
[Private IP addresses]
The infrastructure team has implemented firewall rules to deny traffic based on IP address ranges.
Which of the following should be used to meet the requirement?
- Statically assigned IP addresses
- Dynamically assigned IP addresses
Statically assigned IP addresses
[Peering]
When 2 VNETs are peered, traffic is routed through …
- public internet
- public internet with a VPN gateway
- Microsoft’s infrastructure backbone
Microsoft’s infrastructure backbone
[Peering]
What is the difference between regular peering and global peering ?
Regular peering is when the two peered VNETs are in the same region
Global peering is when the two peered VNETs are in different regions
[Peering]
A single VNET can span …
- regions
- subscriptions
- both
- neither regions nor subscriptions
neither regions nor subscriptions
[Peering]
True or false : Ingressing and egressing data is more expensive in global peering
True
[Peering]
What is the most important rule to remember when establishing the peering relationship between two VNETs ?
The two VNETs can not have overlapping address space
[Peering]
True or false : Once two VNETs are peered, you can modify their address space
False - address space can not be modified once a VNET is peered with another
[Peering]
True or false : address space can not be modified once a VNET is peered with another VNET
True
[Peering]
What is the maximum number of peering connections per VNET ?
Is this a hard limit or can this be changed ?
500 peering connections per VNET
It is hard limit
[Peering]
What does UDR stand for ?
User Defined Routing
[Peering]
VNet peering is not _____________________ . This means there is no automatic connectivity between spokes in a hub-and-spoke topology.
transitive
[Peering]
…deploy an NVA into the hub through user-defned routes (UDRs) to route inter-spoke traffc through the NVA.
This is known as ___________________ , and it enables spoke-to-spoke communication without requiring additional VNet peerings.
service chaining
[Peering]
What is the simplest way to do spoke-to-spoke communication without doing too many VNET peerings ?
service chaining
[Peering]
NVA stands for … ?
Network Virtual Appliance
[Peering]
In an hub-and-spoke architecture, where several VNETs are all peered to a hub, you’ve decided to use service chaining to avoid creating too many peering relationships.
What are the two major characteristics of “service chaining” ?
- Deploy an NVA to the Hub
2. Use UDR to route inter-spoke traffic through the NVA
[Peering]
To transit traffic from one spoke VNet to another spoke VNet via an NVA in the hub VNet, the VNet peerings must be confgured correctly.
By default, a peering connection will only accept traffic originating from the VNet to which it is connected.
However, this will not be the case for traffic forwarded between spoke VNets via an NVA in a hub VNet.
To permit such traffic, the ________________________ setting must be enabled for those VNet peerings.
Allow Forwarded Traffic
[Peering]
Suppose you want two peered VNets want to send traffic to an external network via a virtual network gateway.
Rather than deploy two virtual network gateways, what is simpler and more cost-efficient set up for the VNets ?
Have them share a single network gateway
[Peering]
“Use Remote Gateways” setting is enabled for a VNet.
Can this VNet have its own network gateway ?
No
[Peering]
You need to inform a VNet-B of the presence of a gateway in VNet-A.
Which setting should you enable in VNet-B ?
Enable the setting “Use Remote Gateway” in VNet-B
[Peering]
Suppose the virtual network gateway is deployed to VNet-A, allowing VNet-A to communicate with the external network.
VNet-B has enabled the setting “Use Remote Gateway” and there is a peering between VNet-A and Vnet-B.
What setting must you enable in VNet-A to allow VNet-B to use VNet-A’s virtual network gateway ?
You must enable the “Allow Gateway Transit” setting
[Private IP addresses]
What do VMs use to connect to a network or to the internet ?
A network interface card (NIC)
[Private IP addresses]
…………………………… is a stand alone Azure resource, whose only purpose is to provide connectivity for VMs. It is thus typically deleted with its corresponding VM.
A network interface card
[Private IP addresses]
A VM acting as an NVA will typically have …
- 1 NIC
- Many NICs
Many NICs
[Private IP addresses]
True or false : A VM can only have one single NIC
False, a VM can have multiple NICs. This is often the case for VMs that are used as NVAs.
[Private IP addresses]
The IP configurations for a VM are stored where ?
In the NIC
[Private IP addresses]
True or false : A single NIC can have multiple IP configurations
True
[Private IP addresses]
True or false : Private IP adresses are a separate resource from the NIC
False
[Private IP addresses]
True or false : Private IP adresses are not a separate resource from the NIC
True
[Private IP addresses]
What two things does an IP configuration specify ?
1 . a specific subnet
- an IP address allocated from that specific subnet
[Private IP addresses]
What does DHCP stand for ?
Dynamic Host Configuration Protocol
[Private IP addresses]
What are the two methods of assigning private IP addresses ?
Which one is the default method ?
- Dynamic
- Static
Dynamic is default
[Private IP addresses]
What does Azure use to dynamically allocate private IP addresses ?
the Azure DHCP server
[Private IP addresses]
In the subnet 10.10.0.0/24, you deploy a VM with dynamic IP address allocation.
Azure DHCP allocates 10.10.0.4
Why ?
It allocated the lowest available IP, and the first 4 are always reserved for the Azure platform
[Private IP addresses]
When does a dynamically allocated IP address change ?
When you stop and restart a VM
[Private IP addresses]
At what level is the IP address allocation method configuration (dynamic/static) specified ?
- the VM
- the NIC
- the IP configuration
- the subnet and IP address
the IP configuration
[Private IP addresses]
You have a VM that is also going to serve as a domain controller.
Which of the following should be used to meet the requirement?
- Statically assigned IP addresses
- Dynamically assigned IP addresses
Statically assigned IP addresses
[Private IP addresses]
Certain resources are going to be accessed through an IP address and not a domain name.
Which of the following should be used to meet the requirement?
- Statically assigned IP addresses
- Dynamically assigned IP addresses
Statically assigned IP addresses
[Private IP addresses]
Static private IP addresses should only be configured in the Azure network interface resource.
They will be assigned to the virtual machine using ………………………. , just like with dynamic private IP addresses.
DHCP
[Private IP addresses]
Private IPv6 addresses can be assigned …
- only dynamically
- only statically
- dynamically or statically
only dynamically
[Private IP addresses]
Private IPv4 addresses can be assigned …
- only dynamically
- only statically
- dynamically or statically
dynamically or statically
