Deploy and manage Azure compute resources Flashcards
Components of Azure Disk Encryption?
- VM must be backed up to the Recovery Service Vault
- Integrated with Azure Key Vault
- BitLocker must be enabled for Windows
- DM-Crypt must be enabled for Linux
What is Kubernetes?
This is a tool that is used to manage container-based applications
What is Kubernetes used for?
This is the ideal tool that teams use to deploy microservices-based applications
What types of applications dose Kubernetes support?
Stateless applications
Stateful applications
Kubernetes architecture is split into what two sides?
Azure-managed control plane
Customer-managed side
What is the API server?
This is used to provide interactions for management tools
What is ectd?
This is used to maintain the state of Kubernetes clusters and configuration. This is a key value store. (Database)
What is the scheduler?
This determines which nodes can be used run workloads and then starts the workloads accordingly
What is the controller manager?
This handles the controllers that are used to control the replicating of pods and node operations.
What are the components on the customer-managed control panel of Kubernetes?
API server
database server (ectd)
scheduler
controller manager
What are the features on the Azure-managed control panel of Kubernetes?
nodes
kube-proxy
kubelet
container runtime
What is a node?
Nodes are used for running the container based applications
What is kube-proxy?
This is used to route network traffic and manages IP addressing for services and pods.
What is kubelet?
This is used to take commands from control plane and schedules the running of requested containers.
What is container runtime?
This is used to run the containers and also helps the containers interact with network and storage resources.
What is a pod?
This is used to run and instance of the application. The pod is represents a single instance of the application. Normally each pod is mapped to a single container.
What is a deployment?
This is used to represent the deployment of one or more identical pods.
What is Azure Container Apps?
Azure Container Apps is a fully managed Kubernetes-based application platform that helps you deploy apps from code or containers without orchestrating complex infrastructure
Azure Container Apps vs Azure Kubernetes Service
Azure Container Apps is fully managed by Azure keeping low level of operations for cloud consumers. Unlike Kubernetes which is only partially managed by Azure.
What is the benefit of Azure Container Apps? (4 points)
Serverless model, abstracts infrastructure.
Simplified management, reducing operational overhead.
Cost-efficient with pay-as-you-go billing.
Elastic scaling based on demand.
Azure Containers Apps allow you to dynamically scale on based on the following?
- HTTP activity
- Processing that is event-driven
- Memory or CPU load
- Any scaler that support KEDA
What is Azure Container Instance?
This is a service that allows you to easily deploy containers in Azure
What are the benefits to using Azure Container Instances?
Zero Infrastructure Management (don’t need underlying VMs)
Containers get an IP address and fully qualified domain name
Supports both windows and Linux containers
What two steps are required to increase the number of CPU cores and memory running Azure Container Instances
- Redeploy ARM ACI deployment template
- Delete the ACI
What steps are required to create and manage a Azure Container Registry
Create an Azure Container Registry
Choose a pricing tier
Configure container registry settings
Set up authentication and security
Access and manage container images
What is DAPR?
Open-source, event-driven runtime for simplifying the development of distributed, microservices-based applications
What dose DAPR stand for?
Distributed Application Runtime
What is KEDA?
Open-source project for event-driven autoscaling of container workloads in Kubernetes
What dose KEDA stand for?
Kubernetes-based Event-Driven Autoscaling
What are three features about KEDA?
Event-Driven Autoscaling
Scalable Event Sources (e.g., Azure Queue)
Custom Metrics Support
What azure service doesn’t need a policy backup?
Azure SQL databases since it automatically backups anyways
How many polices are required foe the services below
100 VMs
10 SQL databases
50 File shares
Only 2
Since SQL doesn’t need a backup policy as it backups everyday automatically by default. Also each service in azure (i.e. VM and File Shares) need their own policy.
What factors matter when identifying what services can be backup to Azure Backups/Recover Services Vault
They need to be in the same region.
You have to ensure that the nodes get an IP address from the Azure virtual network subnet. And the pods receive an IP address from a logically different address space.
What can you implement to achieve this?
kubenet
You have to ensure that every pod gets an IP address from the subnet and can be accessed directly.
What can you implement to achieve this?
Azure Container Network Interface
You’ve been asked to scale a container app, what are the prerequisites to do this?
GitHub Account
Azure Account
Azure CLI
What is an Availability Set?
Availability Sets are used to increase the availability/SLA of your VMs for just in case something goes wrong or changes with with the underlying hardware
What is an Availability Zone?
Availability zones is a feature that offers high availability for your resources by protecting them from data centre failures.
What is a Fault Domain?
This defines a group of VMs that share a common power source and network switch. This can help protect your VM from hardware failures, network outages or power outages
What is an Update Domain?
This is a group of VMs that can be rebooted at the same time to conduct updates.
How many Fault Domains can you have per region?
You can only get 3 fault domains per region.
How many Update Domains can you have per region?
You can configure up to 20 update domains per region.
What is VM Set Scales?
Azure VM Set Scales is a service that allows you to create and manage a group of identical load balanced VMs.
