Describe Azure compute and networking services

Question 1

What cloud service model would a VM fall under?

Answer 1

Infrastructure as a service (IaaS).

Question 2

With a VM being infrastructure as a service (IaaS), what would the tenant be responsible for?

Answer 2

Configuring, updating, and maintaining software on the VM.

Question 3

How can multiple identical VMs be created?

Answer 3

Preconfigured VM image; A template used to create a VM and may already include an OS and other software.

Question 4

Define ‘Azure Virtual Desktop’

Answer 4

Desktop and application virtualization service that enabling you to use a cloud-hosted version of Windows.

Question 5

Define a ‘container’

Answer 5

A bundle of application code with all the files and libraries it needs to run on any infrastructure.

Question 6

What is the benefit of an azure function?

Answer 6

Ideal when you’re only concerned about the code running your service and not about the underlying platform or infrastructure.

Question 7

How do azure functions operate?

Answer 7

Runs your code when it’s triggered and automatically deallocates resources when the function is finished.

Question 8

What are the two forms of azure functions?

Answer 8

1. Stateless
2. Stateful

Question 9

Define a stateless azure function

Answer 9

Behave as if they’re restarted every time they respond to an event; does not retain information about previous processes.

Question 10

Define a stateful azure function

Answer 10

The function can store, record, and return to already established information and processes.

Question 11

Define the ‘azure app service’

Answer 11

Enables you to build and host web apps, background jobs, and RESTful APIs in any programming language without managing infrastructure.

Question 12

How does the azure app service integrate with code repositories?

Answer 12

Enables automated deployments from GitHub, Azure DevOps, or any Git repo.

Question 13

How does azure manage the infrastructure that supports an app service?

Answer 13

Secured endpoints; Integrated deployment/management; Load balancing; Scalability.

Question 14

What is the purpose of virtual networking in azure?

Answer 14

Enables azure resources to communicate with each other, the internet, and with on-premises infrastructure.

Question 15

What are the three ways to link an azure network with an on-premises network?

Answer 15

1. Point-to-site VPN
2. Site-to-site VPN
3. Azure ExpressRoute

Question 16

Define ‘Azure ExpressRoute’ gateway

Answer 16

A direct/private connection between on-premises infrastructure and Microsoft cloud services.

Question 17

How can network traffic be filtered in azure?

Answer 17

Network security groups; network virtual appliances.

Question 18

Define a network security group

Answer 18

Azure resources that can contain multiple inbound and outbound security rules.

Question 19

Define a network virtual appliance

Answer 19

VMs that carry out a particular network function, such as firewall or performing WAN optimization.

Question 20

Define ‘virtual network peering’

Answer 20

Creates a direct/private connection between two virtual networks on the Microsoft backbone that will never travel the internet.

Question 21

What function allows you to control routing tables between subnets within a virtual network or between virtual networks?

Answer 21

User-defined routes (UDR).

Question 22

When deploying a VPN gateway, how many can be in one virtual network?

Answer 22

You can deploy only one VPN gateway in each virtual network; Once gateway can be used to connect multiple locations.

Question 23

What are the two types of VPN gateways?

Answer 23

1. Policy-based
2. Route-based

Question 24

Define how a ‘policy-based’ VPN gateway functions

Answer 24

An encrypted tunnel is created when source, destination, interface, application, and action, match a policy.

Question 25

Define how a ‘route-based’ VPN gateway functions

Answer 25

You have to create tunnels specifying all IPSec-related settings, add routes for remote networks, create Security rules to allow traffic.

Question 26

What are the best use cases for a route-based VPN?

Answer 26

• Connections between virtual networks
• Point-to-site connections
• Multisite connections
• Coexistence with an Azure ExpressRoute gateway

Question 27

How are VPN gateways made to be fault tolerant?

Answer 27

By default, VPN gateways are deployed as two instances in an active/standby configuration; zone-redundant gateways; Active/Active.

Question 28

What is the connection between on-prem and azure called when using ExpressRoute?

Answer 28

ExpressRoute Circuit.

Question 29

How can on-prem sites be connected using ExpressRoute?

Answer 29

If two sites have existing independent ExpressRoute to azure, they can establish an additional ExpressRoute between each other.

Question 30

Define a ‘point-to-point’ ExpressRoute

Answer 30

Using a point-to-point connection to connect your facility to the Microsoft cloud.

Question 31

Define an ‘any-to-any’ ExpressRoute

Answer 31

Integrate your wide area network (WAN) with Azure by providing connections to your offices and datacenters.

Question 32

Define ‘Azure DNS’

Answer 32

DNS hosting service for DNS domains that provides name resolution by using Microsoft Azure infrastructure.

Question 33

Where is Azure DNS hosted?

Answer 33

On Azure’s global network of DNS name servers.

Question 34

How dos Azure DNS ensure efficiency?

Answer 34

Uses anycast networking, so each DNS query is answered by the closest available DNS server.

Question 35

How can the security of Azure DNS be managed by a tenant?

Answer 35

Azure role-based access control; Activity logs; Resource locking.

Question 36

Can Azure DNS provide service for external resources?

Answer 36

Yes.

Question 37

How does Azure DNS provide customizable DNS?

Answer 37

Supports private DNS domains; Allows you to use your own custom domain names in your private virtual networks.

Question 38

Define an ‘alias record set’

Answer 38

Used to refer to an Azure public IP address, an Azure Traffic Manager profile, or an Azure Content Delivery Network (CDN) endpoint.

Question 39

Define the function of an alias record set

Answer 39

The alias record set points to the service instance and the service instance is associated with an IP address.

Question 40

Define the purpose of an alias record set

Answer 40

If the IP address of the underlying resource changes, the alias record set seamlessly updates itself during DNS resolution.

Question 41

Which Azure Virtual Machine feature staggers updates across VMs based on their update domain and fault domain?

Answer 41

Availability sets.

Question 42

What can you use to connect Azure resources, such as Azure SQL databases, to an Azure virtual network?

Answer 42

Service endpoints are used to expose Azure services to a virtual network, providing communication between the two.