Implement Virtual Networks (10-15%)

Question 1

What are the 2 requirements to create a DNS zone in Azure DNS?

Answer 1

1. The name of the zone must be unique within the resource group.
2. The zone must not already exist in that resource group.

Question 2

True/False: The same zone name can be reused in a different resource group or a different Azure subscription

Answer 2

True

Question 3

What DNS record types does Azure DNS support?

Answer 3

Azure DNS supports all common DNS record types: A, AAAA, CNAME, MX, NS, PTR, SOA, SRV, and TXT. Note that SPF records are represented using TXT records.

Question 4

What is a Record Set in relation to Azure DNS?

Answer 4

A collection of DNS records in a zone that have the same name and are of the same type - aka resource record set.

Example: Sometimes you need to create more than one DNS record with a given name and type. For example, suppose the ‘www.contoso.com’ web site is hosted on two different IP addresses. The website requires two different A records, one for each IP address.

Question 5

Which 2 types of DNS records are not allowed to have multiple entries (record set)?

Answer 5

1. SOA

2. CNAME

Question 6

Which 2 types of DNS record sets do not support Wild Cards in Azure DNS?

Answer 6

1. NS

2. SOA

Question 7

True/False: Azure DNS supports using Azure Resource Manager tags on DNS zone resources.

Answer 7

True

Question 8

What is the difference between Tags and Metadata in Azure DNS?

Answer 8

Similar to tags, metadata enables you to associate name-value pairs with each record set. This can be useful, for example to record the purpose of each record set. Unlike tags, metadata cannot be used to provide a filtered view of your Azure bill and cannot be specified in an Azure Resource Manager policy.

Question 9

Azure DNS default zones per subscription?

Answer 9

100

Question 10

Azure DNS default record sets per zone?

Answer 10

5000

Question 11

Azure DNS default records per record set?

Answer 11

20

Question 12

PS: Get Name Servers from Azure DNS?

Answer 12

Get-AzureRmDnsZone

Question 13

Does Azure DNS provide an Authoritative or Recursive DNS?

Answer 13

Azure DNS provides an Authoritative DNS service.

*Cloud Services and VMs within Azure are automatically configured to use a recursive DNS service that is provided separately as part of Azure’s infrastructure.

Question 14

What are the 3 Load Balancing Policies for Traffic Manager?

Answer 14

1. Performance - Direct to closest service base3d on network latency
2. Round Robin - Distribute equally across all services
3. Failover - backup if primary fails.

Question 15

What type of DNS record is needed for Traffic Manager?

Answer 15

CNAME

Question 16

Default URL for Traffic Manager?

Answer 16

.trafficmanager.net

Question 17

True/False: The client connects to the application service endpoint directly, NOT through Traffic Manager.

Answer 17

True

Question 18

What are the 3 ways you can connect Azure to your On-Prem?

Answer 18

1. Point To Site VPN
2. Site to Site VPN
3. Azure ExpressRoute

Question 19

What are the 2 ways you can filter traffic between subnets in Azure?

Answer 19

1. Network Security Groups (NSG)

2. Network Virtual Appliance (NVA) - 3rd party appliances like Cisco, Barricuda, pfSense,F5

Question 20

How does a VM (by default) communicate to the outside Internet?

Answer 20

The private IP address of the resource is source network address translated (SNAT) to a public IP address by the Azure infrastructure.

Question 21

Default URL for Azure Load Balancer?

Answer 21

.cloudapp.net

Question 22

What type of Algorithm does Azure Load Balancer User?

Answer 22

A hash-based distribution algorithm. By default, it uses a 5-tuple hash composed of source IP, source port, destination IP, destination port, and protocol type to map traffic to available servers.

Question 23

What 3 Types of Service Monitoring can Azure Load Balancer do?

Answer 23

1. Guest agent probe (on Platform as a Service Virtual Machines only)
2. HTTP Custom Probe
3. TCP Custom Probe

Question 24

What are the 3 different options to distribute network traffic using Microsoft Azure?

Answer 24

1. Azure Load Balancer works at the transport layer (Layer 4 in the OSI network reference stack). It provides network-level distribution of traffic across instances of an application running in the same Azure data center.
2. Application Gateway works at the application layer (Layer 7 in the OSI network reference stack). It acts as a reverse-proxy service, terminating the client connection and forwarding requests to back-end endpoints.
3. Traffic Manager works at the DNS level. It uses DNS responses to direct end-user traffic to globally distributed endpoints. Clients then connect to those endpoints directly.

Question 25

PS: Verify a IP Address is free?

Answer 25

Test-AzureRmStaticVnetIP

Question 26

CLI: Create Interla Load Balancer Set

Answer 26

azure network lb create