Create and Manage ARM Virtual Machines (20-25%) Flashcards
OS Disk type?
VHD
Whats a resource Group?
A container that holds related resources.
Whats the Temporary disk?
his disk is stored on a physical drive on the host machine. It is not saved in Azure Storage, and might be deleted during reboots and other VM lifecycle events. Use this disk only for temporary data, such as page or swap files.
Whats a Network Security Group (NSG)?
Used to allow/deny network traffic to the subnet. You can associate an NSG with an individual NIC or with a subnet. If you associate it with a subnet, the NSG rules apply to all VMs in that subnet.
CLI: List Available VM sizes in a given region
azure vm sizes –location
CLI: Enable VM Dignostics
azure vm enable-diag
CLI: Enable VM Diagnostics
azure vm enable-diag
CLI: Deallocate a VM
azure vm deallocate
If you delete a VM what happens to the VHDs?
If you delete a VM, the VHDs are not deleted. That means you can safely delete the VM without losing data. However, you will still be charged for storage.
What Storage Tiers are needed for Azure Managed Disks?
Standard or Premium
What are Azure Managed Disks?
simplifies disk management for Azure IaaS VMs by managing the storage accounts associated with the VM disks
Benefit(s) of Azure Managed Disks?
- No need to worry about Storage Account IOPS limits
- Simple and Scalable vM deployment
- better Reliability for Availability Sets
What performance storage tier is needed for SSD?
Premium
What are the 2 Encryption options for Managed Disks?
- Storage Service Encryption (SSE) - Encryption at rest
2. Azure Disk Encryption (ADE) - OS and Data Disk Encryption
What is Azure Cloud Shell?
The Azure Cloud Shell is a free Bash shell that you can run directly within the Azure portal. It has the Azure CLI preinstalled and configured to use with your account. Click the Cloud Shell button on the menu in the upper-right of the Azure portal.
CLI: Create a resource group
az group create –name –location
CLI: Create a Linux VM with SSH keys
az vm create –resource-group myResourceGroup –name myVM –image UbuntuLTS –generate-ssh-keys
CLI: Open Port
azure vm open-port –port –resourcegroup –name
CLI: Remove all VM and related resources
az group delete –name ResourceGroup
2 Type of Authentication for a Linux VM
- SSH Public Key
2. Password
PS: Log into Azure
Login-AzureRmAccount
PS: Create a Resource Group
New-AzureRmResourceGroup
PS: Create a Subnet Config
New-AzureRmVirtualNetworkSubnetConfig
PS: Create a Virtual Network
New-AzureRmVirtualNetwork
PS: Create a Public IP
New-AzureRmPublicIpAddress
PS: Create a Network Security Group
New-AzureRmNetworkSecurityGroup
PS: Create a Network Security Group Rule
New-AzureRmNetworkSecurityRuleConfig
PS: Create a network card
New-AzureRmNetworkInterface
PS: Create a VM
New-AzureRmVM
PS: Get Public IP of VM
Get-AzureRmPublicIpAddress
PS: Create Virtual Machine Configuration
New-AzureRmVMConfig
PS: Virtual Machine Configuration for OS
Set-AzureRmVMOperatingSystem
PS: Virtual Machine Configuration for Image
Set-AzureRmVMSourceImage
PS: Remove the resource group, VM, and all related resources.
Remove-AzureRmResourceGroup -Name myResourceGroup
CLI: Create a Virtual network and subnet
az network vnet create \
- -resource-group myResourceGroup \ - -name myVnet \ - -address-prefix 192.168.0.0/16 \ - -subnet-name mySubnet \ - -subnet-prefix 192.168.1.0/24
CLI: Create Public IP
az network public-ip create \
- -resource-group myResourceGroup \ - -name myPublicIP \ - -dns-name mypublicdns
CLI: Create a network security group
az network nsg create \
- -resource-group myResourceGroup \ - -name myNetworkSecurityGroup
CLI: Create Network Security Group Rule
az network nsg rule create \
- -resource-group myResourceGroup \ - -nsg-name myNetworkSecurityGroup \ - -name myNetworkSecurityGroupRuleSSH \ - -protocol tcp \ - -priority 1000 \ - -destination-port-range 22 \ - -access allow
CLI: Show NSG
az network nsg show –resource-group myResourceGroup –name myNetworkSecurityGroup
CLI: Create virtual nic
az network nic create \
- -resource-group myResourceGroup \ - -name myNic \ - -vnet-name myVnet \ - -subnet mySubnet \ - -public-ip-address myPublicIP \ - -network-security-group myNetworkSecurityGroup
What is a fault domain?
Fault domains define a grouping of virtual machines that share a common power source and network switch. By default, the virtual machines that are configured within your availability set are separated across up to three fault domains. A hardware issue in one of these fault domains does not affect every VM that is running your app.
What is an Update Domain?
Update domains indicate groups of virtual machines and underlying physical hardware that can be rebooted at the same time. During planned maintenance, the order in which update domains are rebooted might not be sequential, but only one update domain is rebooted at a time.
Max number of fault domains?
3 per region
Max number of Update domains?
Up to 20
CLI: Create Availability Set
az vm availability-set create \
- -resource-group myResourceGroup \ - -name myAvailabilitySet
CLI: Export as a Template
az group export –name myResourceGroup > myResourceGroup.json
CLI: Create an Environment from a Template
az group deployment create \
- -resource-group myNewResourceGroup \ - -template-file myResourceGroup.json
CLI: Log into Azure
azure login
CLI: Upload Image to Azure
azure vm image create `
- -blob-url // ` - -os Linux
CLI: Create VM from Image
azure vm create
Tool Used to generalize Windows VMs?
Sysprep
What is the Azure Load Balancer?
The Azure Load Balancer distributes traffic between multiple virtual machines.
Default number of update domains?
5
PS: Create Availability Set
New-AzureRmAvailabilitySet
What are the 3 load balancing methods available in Azure?
- Failover
- Performance
- Round Robin
What are virtual machine scale sets (vmss) in Azure?
VM Scale Sets enable you to deploy and manage multiple VMs as a set. Instead of provisioning multiple individual VMs, you provision a Scale Set based on an image, just like a regular VM. The Azure platform then provisions and de-provisions VMs based on that image as needed.
PS: Create Auto Scale Rule
New-AzureRmAutoScaleRule
PS: Create Auto Scale Profile
New-AzureRmAutoScaleProfile
What are the 4 Options for Storage Replication?
- Locally Redundant
- Geo-Redundant
- Read-Access Geo Redundant
- Zone Redundant
What is Azure Redis Cache?
It gives you access to a secure, dedicated Redis cache, managed by Microsoft, and accessible from any application within Azure. (Recommended)
What is Azure In-Role Cache?
This feature enables you to create a cache that’s specific to a cloud service. The cache is hosted by instances of a web or worker role, and can only be accessed by roles that are operating as part of the same cloud service deployment unit. The cache is clustered, and all instances of the role within the same deployment unit that hosts the cache become part of the same cache cluster. However, this option is no longer recommended and is only provided to support existing applications that have been built to use it.
Use Azure Redis Cache instead
What is Azure Managed Cache?
This service is based on the Azure Service Fabric Cache engine. It enables you to create a distributed cache that can be shared by loosely-coupled applications. The cache is hosted on high-performance servers running in an Azure datacenter. However, this option is no longer recommended and is only provided to support existing applications that have been built to use it. For all new development, use Azure Redis Cache instead
