Describe Azure Core Services

Question 1

Describe examples of when to use VMs?

Answer 1

During testing and development - VMs provide a quick and easy way to create different OS and application configurations.

When running applications in the cloud - The ability to run certain applications in the public cloud as opposed to creating a traditional infrastructure to run them can provide substantial economic benefits.

When extending your datacenter to the cloud. An organization can extend the capabilities of it’s own on-premises network by creating a virtual network in Azure and adding VMs to that virtual network.

During disaster recover

Question 2

What is Azure Batch?

Answer 2

Enables large-scale parallel and high performance computing batch jobs with the ability to scale tens, hundreds , or thousands of VMs.

Question 3

What are common app services?

Answer 3

With App Service you can host
Web Apps - includes full support for hosting web apps by using .ASP .NET, ASP.NET Core, Java, Ruby, Node.js, PHP, or Python.
API Apps - Build REST-based web APIs by using your choice of language and framework.
WebJobs - Can use WebJobs feature to run a program (.exe, Java, PHP, Python, or Node.js)
Mobile Apps - Store mobile app data in a cloud-based SQL database. Authenticate customers against common social providers, such as MSA, Google, Twitter, and Facebook. Send push notifications. Execute custom back-end Logic

You pay for the Azure compute resources your app uses while it processes requests based on the App Service plan you choose.

Question 4

What are containers?

Answer 4

Containers are virtualization environment. Much like running multiple virtual machines on a single physical host, you can run multiple containers on a single physical or virtual host.

Question 5

What is an Azure Container Instance?

Answer 5

Azure Container Instances is a solution for any scenario that can operate in isolated containers, without orchestration.

Question 6

What is Azure Kubernetes Service?

Answer 6

The task of automating, managing and interacting with a large number of containers is known as orchestration. Azure Kubernetes Service is a complete orchestration service for containers with distributed architecture and large volumes of containers.

Question 7

When should you use containers?

Answer 7

Containers are often used to create solutions by using a microservice architecture. This architecture is where you break solutions into smaller, independent pieces.

Question 8

What is Serverless computing?

Answer 8

Serverless computing is the abstraction of servers, infrastructure and operating systems.

Question 9

What does Abstraction of servers mean?

Answer 9

Serverless computing abstracts the servers you run on. You never explicitly reserve server instances. The platform manages that for you. each function execution can run on a different compute instance.

Question 10

What does Event-driven scale mean?

Answer 10

Serverless computing is an excellent fit for workloads that must respond to incoming events that have triggers.

Question 11

What does Micro-billing mean in terms of serverless computing?

Answer 11

With serverless computing, the user pays only for the time their code runs. If no active function executions occur, they’re not charged.

Question 12

What is Azure Logic Apps?

Answer 12

Logic apps are similar to functions that they can be triggered by an event. Where functions execute code, logic apps execute workflows that are designed to automate business scenarios and are built from predefined logic blocks.

Question 13

What is a stateless function?

Answer 13

When a function is stateless (the default), they behave as if they’re restarted every time they respond to an event.

Question 14

What is a stateful function?

Answer 14

When a function is stateful ( called Durable Functions), a context is passed through the function to track prior activity.

Question 15

What is the state for Functions and Logic Apps?

Answer 15

Functions - normally stateless, but durable functions provide state.
Logic Apps - Stateful

Question 16

What is the development for functions and logic apps?

Answer 16

Functions - code-first (imperative)

Logic Apps - Designer-first (declarative)

Question 17

What is the connectivity for Functions and Logic Apps?

Answer 17

Functions - About a dozen built-in binding types.

Logic Apps - Large collection of connectors.

Question 18

What is the actions for Functions and Logic Apps?

Answer 18

Functions - Each activity in an Azure function. Write code for for activity functions.
Logic Apps - Large collection of ready-made actions.

Question 19

What is the monitoring for Functions and Logic Apps?

Answer 19

Functions - Azure application insights

Logic Apps - Azure portal, Log Analytics

Question 20

What is the management for Functions and Logic Apps?

Answer 20

Functions - REST API, Visual studio

Logic Apps - Azure Portal, REST API, PowerShell, Visual Studio

Question 21

What is the execution context for Functions and Logic Apps?

Answer 21

Functions - Can run locally or in the cloud

Logic Apps - Runs only in the cloud

Question 22

What is Azure Virtual Desktop?

Answer 22

Azure virtual desktop is a desktop and application virtualization service that runs on the cloud. It enables your users to use a cloud-hosted version of Windows from any location.

Question 23

Why should you use Azure Virtual Desktop?

Answer 23

Provides the best user experience

Enhances security - Uses Azure Active Directory. Can enable MFA. Can secure access by assigning RBAC to users.

Question 24

What are some key features of Azure Virtual Desktop?

Answer 24

Simplified management
Performance management - can load balance users on your VM host pools. Host pools are collections of VMs with the same configuration assigned to multiple users.
Allows for Multi-session

Question 25

How can you reduce costs with Azure Virtual Desktop?

Answer 25

Bring your own license

Save on compute costs - buy one year o three year Azure Reserved Virtual Instances.

Question 26

What is Azure virtual networking?

Answer 26

Azure virtual networks enable Azure resources, such as VMs, web apps, and databases, to communicate with each other, with users on the internet and with your on-premises client computers.

Question 27

What are the key networking capabilities that Azure virtual networks provide?

Answer 27

Isolation and segmentation
Internet communications
Communicate between Azure resources
Communicate with on-premise resources
Route network traffic
Filter network traffic
Connect virtual networks

Question 28

What is Isolation and Segmentation?

Answer 28

Azure virtual network allows you to create multiple isolated virtual networks. When you set up a virtual network, you define a private IP address space by using either public or private IP address ranges.

Question 29

How can you enable Azure resources to communicate securely with each other?

Answer 29

Virtual networks - can connect not only to VMs but other Azure resources such as App Service Environment for Power Apps, Azure Kubernetes Service and Azure virtual machine scale sets.
Service endpoints - You can use service endpoints to connect to other Azure resource types, such as Azure SQL, databases and storage acccounts.

Question 30

How can you communicate with on-premise resources?

Answer 30

Point-to-site virtual private networks
Site-to-site virtual private network
Azure ExpressRoute

Question 31

What is a Point-to-site virtual private network?

Answer 31

A typical approach to a virtual private network (VPN) connection is from a computer outside your organization, back into your corporate network. In this case, the client computer initiates an encrypted VPN connection to connect that compute to the Azure virtual network.

Question 32

What is a Site-to-site virtual private network?

Answer 32

A site-to-site VPN links your on-premises VPN device or gateway to the Azure VPN gateway in a virtual network. In effect, the devices in Azure can appear as being on the local network. The connection is encrypted and works over the internet

Question 33

What is Azure ExpressRoute?

Answer 33

ExpressRoute is a service that enables you to create private connections between Azure datacenters and infrastructure that’s on your premises or in a colocation environment.

Question 34

How can you control routing and override network traffic?

Answer 34

Routing Tables - a route table allows you to define rules about how traffic should be directed.
Border Gateway Protocol - Border Gateway Protocol (BGP) works with Azure VPN gateways, Azure Route Server, or ExpressRoute to propagate on-premise BGP routes to Azure virtual networks.

Question 35

How does Azure Virtual networks enable you to filter between subnets?

Answer 35

Network Security Groups

Network Virtual Appliances

Question 36

What are Network Security Groups?

Answer 36

A network security group is an Azure resource that can contain multiple inbound and outbound security rules. You can define these rules to allow or block traffic, based on factors such as source and destination IP address, port, and protocol.

Question 37

What are Network Virtual Appliances?

Answer 37

Network virtual appliance is a specialized VM that can be compared to a hardened network appliance. A network virtual appliance carries out a particular network function, such as running a firewall or performing wide area network (WAN) optimization.

Question 38

What is virtual network peering?

Answer 38

With peering you can link virtual networks together. Peering enables resources in each virtual network to communicate with each other. These virtual networks can be in separate regions, which allows you to create a global interconnected network through Azure.

Question 39

What is a VPN Gateway?

Answer 39

A VPN gateway is a type of virtual network gateway. Azure VPN Gateway instances are deployed in a dedicated subnet of the virtual network and enable the following connectivity.

• • Connect on-premises datacenters to virtual networks through a site-to-site connection
• -Connect individual devices to virtual networks through a point-to-site connection
• -Connect virtual networks to other virtual networks through a network-to-network connection

Question 40

When you deploy a VPN gateway what types of VPN can you specify?

Answer 40

Policy based

Route based

Question 41

What is a Policy-based VPN?

Answer 41

Policy-based VPN gateways specify statically the IP address of packets that should be encrypted through each tunnel. This type of device evaluates every data packet against those sets of IP addresses to choose the tunnel where that packet is going to be sent through.

Question 42

What are the key features of policy-based VPN gateways in Azure include?

Answer 42

Support for IKEv1 only
Use of static routing where combinations of address prefixes from both networks control how traffic is encrypted and decrypted through the VPN tunnel.
Policy-based VPNs must be used in specific scenarios that require them, such as for compatibility with legacy on-premise devices.

Question 43

What are Route-based VPNs?

Answer 43

Route-based gateway can be used when defining which IP addresses are behind each tunnel is too cumbersome. With route based gateways, IPSec tunnels are modeled as a network interface or virtual tunnel interface, IP routing decides which one of these tunnel interfaces to use when sending each packet. Preferred connection method for on-premises devices.

Question 44

When should you use a route-based VPN gateway?

Answer 44

If you need any of the following types of connectivity.

• Connections between virtual networks
• Point-to-site connections
• Multisite connections
• Coexistence with an Azure Express Route Gateway

Question 45

What are the key features of route-based VPN gateways?

Answer 45

Supports IKEv2
Uses any-to-any (wildcard) traffic selectors
Can use dynamic routing protocols,

Question 46

What required Azure resources do you need to deploy a VPN gateway?

Answer 46

Virtual network
GatewaySubnet
Public IP address
Local network gateway
Virtual network gateway
Connection

Question 47

What on-premise resources do you need to connect to a VPN gateway?

Answer 47

A VPN device that supports policy-based or route-based VPN gateways
A public-facing (internet-routable) IPv4 address

Question 48

Do ExpressRoute connections go over the public internet?

Answer 48

No.

Question 49

What is Layer 2 (L2)?

Answer 49

This layer is the Data Link Layer, which provides node-to node communication between two nodes on the same network.

Question 50

What is Layer 3 (L3)?

Answer 50

This Layer is the Network Layer, which provides addressing and routing between nodes on a multi-node network.

Question 51

What are the features and benefits of ExpressRoute?

Answer 51

Layer 3 connectivity between your on-premises network and the Microsoft Cloud through a connectivity provider.
Connectivity to Microsoft cloud service across all regions in the geopolitical region.
Global connectivity to Microsoft services across all regions with ExpressRoute Premium add-on
Dynamic routing between your network and Microsoft via BGP
Built-in redundancy in every peering location for higher reliability.
Connection uptime SLA
QoS support to Skye for Business

Question 52

What are the ExpressRoute connectivity models?

Answer 52

CloudExchange colocation
Point-to-point Ethernet connection
Any-to-any connection
Directly from ExpressRoute sites

Question 53

What is the Colocation at a cloud exchange connectivity model?

Answer 53

Collocated providers can normally offer both Layer 2 and Layer 3 connections between your infrastructure, which might be located in the colocation facility, and the Microsoft cloud.

Question 54

What is the Point-to-point Ethernet connection connectivity model?

Answer 54

Point-to-point connections provide Layer 2 and Layer 3 connectivity between your on-premises site and Azure. You can connect your offices or datacenters to Azure by using the point-to-point links.

Question 55

What is the Any-to-any network connectivity model?

Answer 55

You can integrate your wide area network (WAN) with Azure by providing connections to your offices and datacenters.

Question 56

Is ExpressRoute connectivity encrypted?

Answer 56

No

Question 57

How can you create an Azure Storage account?

Answer 57

Azure portal
PowerShell
Azure CLI

Question 58

What is Azure Blob Storage?

Answer 58

Is an object storage solution for the cloud. It can store massive amounts of data, such as text or binary data. Azure Blob Storage is unstructured, meaning that there are no restrictions on any kinds of data it can hold. Blob Storage can mange thousands of simultaneous uploads, massive amounts of video data, constantly growing log files, and can be reached from anywhere with an internet connection.

Question 59

What is Blob Storage ideal for?

Answer 59

Serving images or documents directly to a browser
Storing files for distributed access
Streaming video and audio
Storing data for backup and restore, disaster recover, and archiving
Storing data for analysis by an on-premises or Azure-hosted service
Storing up to 8 TB of data for virtual machines

Question 60

What is Azure Files Fundamentals?

Answer 60

Azure Files offers fully managed file shares in the cloud that are accessible via the industry standard Server Message block and Network File System protocols.

Question 61

What situations is Azure Files for?

Answer 61

Many on-premises applications use file shares. Azure files make it easier to migrate those applications that share data to Azure. If you mount the Azure file share to the same drive letter that the on-premises application uses, the part of your application that accesses the file share should work with minimal changes, if any.
Store configuration files on a file share and access them from multiple VMs. Tools and utilities used by multiple developers in a group can be stored on a file share, ensuring that everybody can find them.
Write data to a file share, and process or analyze the data later.

Question 62

What are the Blob access tiers?

Answer 62

Hot access tier- optimized for storing data that is accessed frequently
Cool access tier - Optimized for data that infrequently accessed and stored for at least 30 days
Archive access tier - Appropriate for data that is rarely accessed and stored for at least 180 days.

Question 63

What is Disk Storage?

Answer 63

Disk Storage provides disks for Azure virtual machines.

Question 64

What is Azure Cosmos DB?

Answer 64

Globally distributed, multi-model databases service. Supports schema-less data. Supports SQL, MongoDB, Cassandra, Tables, and Gremlin APIs.

Question 65

What is Azure SQL database?

Answer 65

Is a relational database on the latest stable version of the Microsoft SQL Server. High-performance, reliable, fully managed, and secure database

Question 66

What are the features of Azure SQL Database?

Answer 66

Is a PaaS database engine
Provides 99.99 percent availability
Fully managed service
Can migrate existing SQL server databases with minimal downtime by using the Azure Database Migration

Question 67

What is Azure database for MySQL?

Answer 67

Azure Database for MySQL is a relational database service in the cloud, and it’s based on the MySQL Community Edition database engine. 99.99 percent availability.

Question 68

What does Azure Database for MySQL deliver?

Answer 68

Built-in high availability with no additional cost
Predictable performance and inclusive, pay-as-you-go pricing.
Scale as needed, within seconds
Ability to protect sensitive data at-rest and in-motion
Automatic backups
Enterprise-grade security and compliance

Question 69

What is Azure Database for PostgreSQL?

Answer 69

Is a relational database service in the cloud based on the community version of the open-source PostgreSQL database engine.

Question 70

What are the benefits of Azure Database for PostgreSQL?

Answer 70

Built-in high availability compared to on-premise resources.
Simple and flexible pricing
Scale up and down as needed, within seconds.
Adjustable automatic backups and point-in-time restore for up to 35 days.
Enterprise-grade security and compliance to protect sensitive data at-rest and in-motion.

Question 71

What is Hyperscale (Citus) ?

Answer 71

Hyperscale (Citus) option horizontally scales queries across multiple machines by using sharding.

Question 72

What is Azure SQL Managed Instance?

Answer 72

Is a platform as a service database engine. Makes it easy to migrate your on-premise data o SQL Server to the cloud using the Azure Database Migration Service.

Question 73

What is Azure Synapse Analytics?

Answer 73

Is a limitless analytics service that brings together enterprise data warehousing and big data analytics. Can query data using serverless or provisioned resources at scale.

Question 74

What is Azure HDInsight?

Answer 74

Fully managed, and open-source analytics service for enterprise. Can run Apache Spark, Apache Hadoop, Apache Kafka, Apache HBase, Apache Storm and Machine learning services. Supports ETL.

Question 75

What is Azure Databricks?

Answer 75

Helps you unlock insights from all your data and build artificial intelligence solutions. Supports Python, Scala, R, Java, and SQL. TensorFlow, PyTorch and scikit-learn.

Question 76

What is Azure Data Lake Analytics?

Answer 76

Is an on-demand analytics job service that simplifies big data. Instead of deploying, configuring and tuning hardware, you write queries to transform your data an extract valuable insights. You only pay for your job when it’s running, making it more cost-effective.