Configure and manage virtual networks for Azure administrators

Microsoft via Microsoft Learn

Go to class Write review

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!

Grab it

Module 1: Learn how to connect your local on-premises networks into Azure using virtual networks, VPN gateways, and Azure ExpressRoute.
In this module, you will:
- Create an Azure Virtual Network
- Create an Azure VPN Gateway
- Learn to work with Azure ExpressRoute
Module 2: In this module, you will learn how to plan and implement an IP addressing scheme for virtual networks and virtual machines in Azure.
In this module, you will:
- Identify the private IP addressing capabilities of Azure virtual networks.
- Identify the public IP addressing capabilities of Azure.
- Identify the requirements for IP addressing when integrating with on-premises networks.
Module 3: Use virtual network peering to enable communication across virtual networks in a way that's secure and minimally complex.
In this module, you will:
- Identify use cases for virtual network peering.
- Identify the features and limitations of virtual network peering.
- Configure peering connections between virtual networks.
Module 4: Find out how Azure network security groups and service endpoints help you secure your virtual machines and Azure services from unauthorized network access.
In this module, you will:
- Identify the capabilities and features of network security groups.
- Identify the capabilities and features of virtual network service endpoints.
- Use network security groups to restrict network connectivity.
- Use virtual network service endpoints to control network traffic to and from Azure services.
Module 5: Learn how to deploy Azure Bastion to securely connect to Azure virtual machines directly within the Azure portal.
In this module, you will:
- Evaluate Azure Bastion as a replacement for a VM jumpbox solution
- Configure Bastion to securely connect to VMs
- Manage remote sessions by enabling diagnostic logs and monitoring remote sessions
Module 6: Learn how to host your domain on Azure DNS.
In this module, you will:
- Configure Azure DNS to host your domain.
Module 7: Learn how to control Azure virtual network traffic by implementing custom routes.
In this module, you will:
- Identify the routing capabilities of an Azure virtual network
- Configure routing within a virtual network
- Deploy a basic network virtual appliance
- Configure routing to send traffic through a network virtual appliance
Module 8: Learn how to deploy and configure Azure Firewall to protect outbound network traffic for Azure Virtual Desktop.
By the end of this module, you'll be able to:
- Deploy and configure Azure Firewall to protect outbound network traffic for Azure Virtual Desktop
Module 9: Learn about the virtual private network (VPN) gateway options in Azure and typical scenarios for using a VPN. Create and test VPNs to securely connect sites to Azure.
In this module, you will:
- Learn the features and use cases of VPN gateways
- Learn the requirements for provisioning VPN gateways
- Provision site-to-site VPN gateways
Module 10: Connect your on-premises systems and users to Azure and Office 365 by using ExpressRoute for private, dedicated, and guaranteed throughput connectivity.
In this module, you will:
- Describe the features and capabilities of ExpressRoute
- Describe the use cases for using ExpressRoute to integrate traditional networks with Azure
Module 11: In this module, you will learn how to use Azure Load Balancer to distribute traffic between multiple virtual servers or services.
In this module, you will:
- Identify the features and capabilities of Azure Load Balancer.
- Deploy and configure an Azure Load Balancer.
Module 12: Learn how to troubleshoot inbound network connectivity for Azure Load Balancer.
In this module, you will:
- Identify common Azure Load Balancer inbound connectivity issues.
- Identify steps to resolve issues when virtual machines aren't responding to health probe.
Module 13: Improve application resilience by distributing load across multiple servers and use path-based routing to direct web traffic.
In this module, you will:
- Identify the load balancing capabilities of Application Gateway
- Create an Application Gateway and configure load balancing
- Configure an Application Gateway to use URL path-based routing
Module 14: Learn how to investigate and diagnose problems in your Azure virtual networks by using Network Watcher and other tools.
In this module, you will:
- Identify the tools available to manage and troubleshoot network connectivity in Azure
- Select the proper tool to manage and troubleshoot network connectivity for various use cases
Module 15: Learn how to create and utilize a Content Delivery Network (CDN) within Azure to host commonly used assets, such as images in a website. The module covers Azure CDN and uses Blob Storage as an underlying storage model for stable or non-volatile data.
In this module, you will:
- Configure a static website, hosted in Azure blob storage, to work with a CDN
- Verify content publishing, and content updating, through the CDN
- Identify the main configuration issues to consider when deploying a static site with CDN
- Manage CDN cache to control content update delivery and query string handling
Module 16: Discover how Azure Traffic Manager provides DNS load balancing for your application to improve the performance and availability of your application.
In this module, you will:
- Learn how to use Traffic Manager to dynamically distribute network traffic.
- Set up Traffic Manager for automatic failover to a secondary region.
- Set up Traffic Manager to redirect client requests to the nearest endpoint.

Syllabus

Module 1: Module 1: Configure the network for your virtual machines
- Introduction
- Explore Azure virtual networking
- Exercise - Create an Azure virtual network
- Explore Azure VPN Gateway
- Exercise - Create an Azure VPN gateway
- Explore Azure ExpressRoute
- Knowledge check
- Summary
Module 2: Module 2: Design an IP addressing schema for your Azure deployment
- Introduction
- Network IP addressing and integration
- Public and private IP addressing in Azure
- Plan IP addressing for your networks
- Exercise - Design and implement IP addressing for Azure virtual networks
- Summary
Module 3: Module 3: Distribute your services across Azure virtual networks and integrate them by using virtual network peering
- Introduction
- Connect services by using virtual network peering
- Exercise - Prepare virtual networks for peering by using Azure CLI commands
- Exercise - Configure virtual network peering connections by using Azure CLI commands
- Exercise - Verify virtual network peering by using SSH between Azure virtual machines
- Summary
Module 4: Module 4: Secure and isolate access to Azure resources by using network security groups and service endpoints
- Introduction
- Use network security groups to control network access
- Exercise - Create and manage network security groups
- Secure network access to PaaS services with virtual network service endpoints
- Exercise - Restrict access to Azure Storage by using service endpoints
- Summary
Module 5: Module 5: Connect to virtual machines through the Azure portal by using Azure Bastion
- Introduction
- What is Azure Bastion?
- How does Azure Bastion work?
- Exercise – Connect to a virtual machine by using Azure Bastion
- Monitor and manage remote sessions
- Exercise - Enable diagnostic logs and monitor remote sessions
- Knowledge check
- Summary
Module 6: Module 6: Host your domain on Azure DNS
- Introduction
- What is Azure DNS?
- Configure Azure DNS to host your domain
- Exercise - Create a DNS zone and an A record by using Azure DNS
- Dynamically resolve resource name by using alias record
- Exercise - Create alias records for Azure DNS
- Summary
Module 7: Module 7: Manage and control traffic flow in your Azure deployment with routes
- Introduction
- Identify routing capabilities of an Azure virtual network
- Exercise - Create custom routes
- What is an NVA?
- Exercise - Create an NVA and virtual machines
- Exercise - Route traffic through the NVA
- Summary
Module 8: Module 8: Protect your Azure Virtual Desktop deployment by using Azure Firewall
- Introduction
- Use Azure Firewall to protect Azure Virtual Desktop deployments
- Exercise - Set up the host pool and register virtual machine host
- Plan Azure Firewall deployment
- Exercise - Deploy Azure Firewall
- Allow outbound network access for Azure Virtual Desktop
- Exercise - Route network traffic through Azure Firewall
- Knowledge check
- Summary
Module 9: Module 9: Connect your on-premises network to Azure with VPN Gateway
- Introduction
- Connect on-premises networks to Azure by using site-to-site VPN gateways
- Exercise - Prepare Azure and on-premises virtual networks by using Azure CLI commands
- Exercise - Create a site-to-site VPN gateway by using Azure CLI commands
- Summary
Module 10: Module 10: Connect your on-premises network to the Microsoft global network by using ExpressRoute
- Introduction
- What is the Azure ExpressRoute service?
- How Azure ExpressRoute works
- When to choose Azure ExpressRoute
- Summary
Module 11: Module 11: Improve application scalability and resiliency by using Azure Load Balancer
- Introduction
- Azure Load Balancer features and capabilities
- Configure a public load balancer
- Exercise - Configure a public load balancer
- Internal load balancer
- Summary
Module 12: Module 12: Troubleshoot inbound network connectivity for Azure Load Balancer
- Introduction
- Troubleshoot Azure Load Balancer
- Diagnose issues by reviewing configurations and metrics
- Exercise - Set up your environment
- Exercise - Identify and resolve inbound network connectivity
- Summary
Module 13: Module 13: Load balance your web service traffic with Application Gateway
- Introduction
- Route traffic with Application Gateway
- Exercise - Create web sites
- Application Gateway creation and configuration
- Exercise - Create and configure an Application Gateway
- Exercise - Test your Application Gateway
- Summary
Module 14: Module 14: Monitor and troubleshoot your end-to-end Azure network infrastructure by using network monitoring tools
- Introduction
- Troubleshoot a network by using Network Watcher monitoring and diagnostic tools
- Exercise - Troubleshoot a network by using Network Watcher monitoring and diagnostic tools
- Troubleshoot a network by using Network Watcher metrics and logs
- Exercise - Troubleshoot a network by using Network Watcher metrics and logs
- Summary
Module 15: Module 15: Create a Content Delivery Network for your Website with Azure CDN and Blob Services
- Introduction
- Exercise - Deploy a static website to blob storage
- Create an Azure CDN
- Exercise - Use a Content Delivery Network to publish a static website
- Exercise - Update a Website and republish to a Content Delivery Network
- Customize and Manage CDN behavior
- Exercise - Customize and manage CDN behavior
- Summary
Module 16: Module 16: Enhance your service availability and data locality by using Azure Traffic Manager
- Introduction
- Route network traffic by using Traffic Manager
- Exercise - Enable automatic failover by using priority routing
- Optimize applications across regions by using performance routing
- Exercise - Optimize applications across regions by using performance routing
- Summary