Skill 4.5 integrate an On-Premises Network for Azure Virtual Network Flashcards
Describe Virtual Network Gateways
Allows you to create connections from your virtual network to other networks. When creating a gatway you must specify if it will be used for VPN connections or express route connections. Virtual Network Gatway used for VPN connections is called a VPN gateway while those used for expressroutes are ExpressRoute gateways
Describe VPN gateways
can be deployed to a dedicated gateway subnet within the VNet. VPN gateway is implemented using Azure Virtual Machine. Minimum gateway size of /29 with a recommended gateway size of /27
Describe the VPN gateway pricing tiers
Basic – 10 Max site-to-site connections throughput of 1–Mbps
VpnGw1 and VpnGw1Az – 30 max site-to-site connections throughout of 650 Mbps
VpnGW2 and VpnGW2Az – 30 max site-to-site VPN connections throughput of 1Gbps
VpnGw3 and VpnGw3Az – 30 max site-to-site VPN connections. Throughput of 1.25 GBPS
What tiers are required to resize a gateway
VpnGw1, VpnGW2, and VPNGW3
How is a VPN gateway deployed by default
each VPN gateway is deployed as two VMs in a active-standby configuration. To reduce downtime in the event the active instance fails and active-active configuration can also be used in active-active both gateways have their own public IP addresses.
What is required for Dual on-premises VPN gateways to be used
BGP must be enabled and works in an active-standby or active-active VPN gateways.
What must you do before creating a VPN gateway
create the gateway subnet
Describe ExpressRoute
Secure and Reliable private connection between your on-prem network and Azure.
Provides connectivity to all MIcrosoft Cloud Services.
ExpressRoute Connectivity Models
–If your network already has a presence at a co-location facility with a cloud exchange your co-location provider can establish a virtual cross-connection with the Microsoft Cloud. This provides either a layer 2 or a managed layer 3 connection
– Your connectivity provider may be able to provide a point-to-point etherenet connection from their network to your on-premises netowrk. Also provides either a layer 2 or managed layer 3 connection
– You’re existing IPVPN WAN provider may be able to integrate ExpressRoute into your WAN. If they are registered as an ExpressRoute provider.
What is each ExpressRoute circuit identified by
A GUID called a service key (s-key) which is shared with your connectivity provider. Each cicuit has a fixed bandwidth and a specfic peering location
What are ExpressRoute Bandwidth options
50mbps
100Mbps
200Mbps
500mbps
1gbps
2gbps
5gbps
10gbps
Describe ExpressRoute Metered Bandwidth
Inbound data transfer is free of charge Outbound data transfer and users are charged based on a predetermined rate.
Users are also charged a fixed monthly port fee
What are the two peering options for ExpressRoute Circuits
Azure Private Peering
Microsoft Peering
Describe ExpressRoute Azure private peering
Provides connectivity over the intranet address space into your Azure Virtual Network. This peering is considered a trusted extension of your network
Describe ExpressRoute Microsoft Peering
Provides connectivity over the Internet address space into Microsoft services such as Office 365 and internet facing endpoints of Azure PaaS
Describe Azure Public peering
used for older circuits adn provides connectivity to Azure PaaS services only
Describe the ExpressRoute Premium add-on
Allows you to extend the connectivity to all Microsoft Data centers worldwide. This add-on also raises the number of routes permitted for teh Azure private peering 4000 - 10000. It also increases the number of virtual networks that can be connected to each epressroute circuit from 10 to 20 and 100 depending on the bandwidth
When does billing for an expressroute circuit begin
Upon creation and does not depend on completing the configuration with the provider
How are virtual networks connected to expressroute circuits
Using ExpressRoute Gateway. An ExpressRoute Gateway is a virtual network gateway, created with the Express routing option. Must be created in teh gateway of the subnet.
Describe Azure Virtual WAN
combination of many networking ,security, and routing functionalities together to provide a single operational interface for various networking solutions.
Azure Virtual WAN facilitates point-to-point, site-to-site, expressroute connectivity, and Azure firewall configuration all in one place
What is the minimum size of a subnet
/29
What is the minimum throughput that can be allocated to an Azure Virtual Wan Hub.
2x 500 Mbps is the minimum throughput that can be allocated.
