Networking

Question 1

What is a VNET?

Answer 1

Virtual Network. used to provide private connectivity between VMs and other Azure services

Question 2

By default can the outside world access a VNET?

Answer 2

No

Question 3

What 3 things do you need to specify in order to set-up a VNET?

Answer 3

Subnet, Address Spaces, Security

Question 4

What must you ensure if one VNET needs to connect to another VNET?

Answer 4

Ensure the address spaces do not overlap

Question 5

What are NSGs and what do they provde?

Answer 5

Network Security Group. Allows control over traffic flow to and from subnets and VMs

Question 6

What do NSGs act as?

Answer 6

Software Firewalls i.e. apply custom rules at each inbound and outbound request

Question 7

What is a VHD?

Answer 7

Virtual Hard Drive

Question 8

What’s the difference between Availability Zones and Availability Sets?

Answer 8

Availability Sets are VMs within the same zone (one or more datacenters). Availability Zones are VMs spanning multiple zones (two or more datacenters spanning multiple zones)

Question 9

What does CIDR stand for?

Answer 9

Classless inter-domain routing

Question 10

Given 192.168.1.1, what’s the CIDR notation for masking the A-Block?

Answer 10

192.168.1.1/8. Range 192.0.0.0 - 192.255.255.255. Subnet mask 255.0.0.0

Question 11

Given 192.168.1.1, what’s the CIDR notation for masking the B-Block?

Answer 11

192.168.1.1/16. Range 192.168.0.0 - 192.168.255.255. Subnet mask 255.255.0.0

Question 12

Given 192.168.1.1, what’s the CIDR notation for masking the C-Block?

Answer 12

192.168.1.1/2. Range 192.168.1.0 - 192.168.1255. Subnet mask 255.255.255.0

Question 13

When creating a VNET, what are Service Endpoints?

Answer 13

Pre-built configuration to allow other Azure Services and Resources to access the VNET

Question 14

When creating a subnet, how many addresses does Azure reserve by default?

Answer 14

5

Question 15

How can you enable public access to VMs, Load Balancers, and Gateways?

Answer 15

Create a ‘Public IP Address’ resource and assign it to a VM or Load Balancer or Gateway

Question 16

What is an ASG?

Answer 16

Application Security Group

Question 17

What is an ASG used for?

Answer 17

Reduces the number of NSGs and security rules you require. It groups the resources that require the SAME rules together. So no need to create an NSG for EVERY SUBNET

Question 18

In production, what SKU of load Balancer is recommended BASIC or STANDARD?

Answer 18

Standard. Enables you to scale your applications and create high availability for small scale deployments to large and complex multi-zone architectures

Question 19

How does a Load Balancer Health Probe work?

Answer 19

It pings the VM periodically. If it doesn’t report back in time after ‘X’ attempts, then it marks it as ‘unhealthy’ until it’s fixed

Question 20

In Load Balancers, what is a ‘Back-end Port’?

Answer 20

It’s a port not exposed publicly but used by the back-end application. So traffic coming in from port 80/443 can be mapped to the back-end port of the application e.g. 8080

Question 21

How many VM Sets can you Load Balance on the BASIC SKU?

Answer 21

1

Question 22

How many VM Sets can you Load Balance on the STANDARD SKU?

Answer 22

Many

Question 23

Can you auto-scale application gateways?

Answer 23

Yes and can scale to different availability zones

Question 24

What is FQDN an acronym of?

Answer 24

Fully Qualified Domain Name

Question 25

What 4 back-end pools can Application Gateways be pointed to?

Answer 25

VMs, App Services, VMSS, IP Address/FQDN

Question 26

What is Azure Front Door?

Answer 26

It combines the best of Load Balancers and Application Gateways but instead of being REGIONAL it’s GLOBAL

Question 27

What 3 things do you need to create an Azure Front Door?

Answer 27

Front-end hosts, Back-end pools, and Routing Rules

Question 28

What is Point-to-Point VPN?

Answer 28

Where individual VPN client connects to the VNET Gateway on Azure

Question 29

What is Site-to-Site VPN?

Answer 29

Where all on-premisis machines are connected to the Azure VNET Gateway

Question 30

What is Virtual WAN?

Answer 30

This is where you can connect 2 offices together using Azure