Skill 4.5 integrate an On-Premises Network for Azure Virtual Network Flashcards
Describe Virtual Network Gateways
Allows you to create connections from your virtual network to other networks. When creating a gatway you must specify if it will be used for VPN connections or express route connections. Virtual Network Gatway used for VPN connections is called a VPN gateway while those used for expressroutes are ExpressRoute gateways
Describe VPN gateways
can be deployed to a dedicated gateway subnet within the VNet. VPN gateway is implemented using Azure Virtual Machine. Minimum gateway size of /29 with a recommended gateway size of /27
Describe the VPN gateway pricing tiers
Basic – 10 Max site-to-site connections throughput of 1–Mbps
VpnGw1 and VpnGw1Az – 30 max site-to-site connections throughout of 650 Mbps
VpnGW2 and VpnGW2Az – 30 max site-to-site VPN connections throughput of 1Gbps
VpnGw3 and VpnGw3Az – 30 max site-to-site VPN connections. Throughput of 1.25 GBPS
What tiers are required to resize a gateway
VpnGw1, VpnGW2, and VPNGW3
How is a VPN gateway deployed by default
each VPN gateway is deployed as two VMs in a active-standby configuration. To reduce downtime in the event the active instance fails and active-active configuration can also be used in active-active both gateways have their own public IP addresses.
What is required for Dual on-premises VPN gateways to be used
BGP must be enabled and works in an active-standby or active-active VPN gateways.
What must you do before creating a VPN gateway
create the gateway subnet
Describe ExpressRoute
secure and reliable private connection between your on-premises networ and the Microsoft cloud. The connection is provided mostly by a third-party netowrk provider who has partnered with Microsoft to offer this Service
It provides connectivity to all Microsoft Cloud Services, unlike a site-to-site VPN which only provies connectivity to your Azure VNet
ExpressRoute Connectivity Models
–If your network already has a presence at a co-location facility with a cloud exchange your co-location provider can establish a virtual cross-connection with the Microsoft Cloud. This provides either a layer 2 or a managed layer 3 connection
– Your connectivity provider may be able to provide a point-to-point etherenet connection from their network to your on-premises netowrk. Also provides either a layer 2 or managed layer 3 connection
– You’re existing IPVPN WAN provider may be able to integrate ExpressRoute into your WAN. If they are registered as an ExpressRoute provider.
What is each ExpressRoute circuit identified by
A GUID called a service key (s-key) which is shared with your connectivity provider. Each cicuit has a fixed bandwidth and a specfic peering location
What are ExpressRoute Bandwidth options
50mbps
100Mbps
200Mbps
500mbps
1gbps
2gbps
5gbps
10gbps
Describe ExpressRoute Metered Bandwidth
All inbound data transfer is free of charge and all outbound data transfer is charged based on a predetermined rate. Users are also cahrged based on a predetermined rate. Users are also charged a fixed monthly port fee
What are the two peering options for ExpressRoute Circuits
Azure Private Peering
Microsoft Peering
Describe ExpressRoute Azure private peering
Provides connectivity over the intranet address space into your Azure Virtual Network. This peering is considered a trusted extension of your network
Describe ExpressRoute Microsoft Peering
Provides connectivity over the Internet address space into Microsoft services such as Office 365 and internet facing endpoints of Azure PaaS
