Design and implementing Microsoft Azure Networking Solutions (AZ-700)
Leer hoe je Azure-netwerkinfrastructuren ontwerpt, implementeert en beheert. Deze training behandelt hybride netwerken, netwerkbeveiliging, monitoring en private toegang tot Azure-services.
Leerdoelen
Na deze training kun je:
- Azure-netwerkinfrastructuren ontwerpen en implementeren.
- Hybride netwerkverbindingen opzetten.
- Verkeer balanceren en routeren.
- Private toegang tot Azure-services configureren.
- Netwerkbeveiliging en monitoring toepassen.
Voor netwerkengineers die zich willen specialiseren in Azure-netwerken. Je beheert netwerkoplossingen voor prestaties, veerkracht, schaalbaarheid en beveiliging.
Je hebt ervaring met:
- Netwerken in een enterprise-omgeving (on-premises of cloud).
- Virtualisatietechnologieën zoals VM’s en virtuele netwerken.
- TCP/IP, DNS, VPN’s, firewalls en encryptie.
- Software-defined networking en hybride netwerkverbindingen.
- High availability en disaster recovery.
Module 1: Azure Virtual Networks
In this module you will learn how to design and implement fundamental Azure Networking resources such as virtual networks, public and private IPs, DNS, virtual network peering, routing, and Azure Virtual NAT.
- Azure Virtual Networks
- Public IP services
- public and private DNS
- cross-VNet connectivity
- Virtual Network Routing
- Azure virtual Network NAT
Lab : Design and implement a Virtual Network in Azure
Lab : Configure DNS settings in Azure
Lab : Connect Virtual Networks with Peering
After completing module 1, students will be able to:
- Implement virtual networks
- Configure public IP services
- Configure private and public DNS zones
- Design and implement cross-VNET connectivity
- Implement virtual network routing
- Design and implement an Azure Virtual Network NAT
Module 2: Design and Implement Hybrid Networking
In this module you will learn how to design and implement hybrid networking solutions such as Site-to-Site VPN connections, Point-to-Site VPN connections, Azure Virtual WAN and Virtual WAN hubs.
- Site-to-site VPN connection
- Point-to-Site VP connections
- Azure Virtual WAN
Lab : Create and configure a local gateway
- Create and configure a virtual network gateway
- Create a Virtual WAN by using Azure Portal
Design and implement a site-to-site VPN connection
- Design and implement a point-to-site VPN connection
- Design and implement authentication
- Design and implement Azure Virtual WAN Resources
Module 3: Design and implement Azure ExpressRoute
In this module you will learn how to design and implement Azure ExpressRoute, ExpressRoute Global Reach, ExpressRoute FastPath and ExpressRoute Peering options.
- ExpressRoute
- ExpressRoute Direct
- ExpressRoute FastPath
- ExpressRoute Peering
Lab : Create and configure ExpressRoute
Design and implement Expressroute
- Design and implement Expressroute Direct
- Design and implement Expressroute FastPath
Module 4: load balancing non-HTTP(S) traffic in Azure
In this module you will learn how to design and implement load balancing solutions for non-HTTP(S) traffic in Azure with Azure Load balancer and Traffic Manager.
- Content Delivery and Load Blancing
- Azure Load balancer
- Azure Traffic Manager
- Azure Monitor
- Network Watcher
Lab : Create and configure a public load balancer to load balance VMs using the Azure portal
Lab : Create a Traffic Manager Profile using the Azure portal
Lab : Create, view, and manage metric alerts in Azure Monitor
Design and implement Azure Laod Balancers
- Design and implement Azure Traffic Manager
- Monitor Networks with Azure Monitor
- Use Network Watcher
Module 5: Load balancing HTTP(S) traffic in Azure
In this module you will learn how to design and implement load balancing solutions for HTTP(S) traffic in Azure with Azure Application gateway and Azure Front Door.
- Azure Application Gateway
- Azure Front Door
Lab : Create a Front Door for a highly available web application using the Azure portal
Lab : Create and Configure an Application Gateway
Design and implement Azure Application Gateway
- Implement Azure Front Door
Module 6: Design and implement network security
In this module you will learn to design and imponent network security solutions such as Azure DDoS, Azure Firewalls, Network Security Groups, and Web Application Firewall.
- Azure DDoS Protection
- Azure Firewall
- Network Security Groups
- Web Application Firewall on Azure Front Door
Lab : Create a Virtual Network with DDoS protection plan
Lab : Deploy and Configure Azure Firewall
Lab : Create a Web Application Firewall policy on Azure Front Door
Configure and monitor an Azure DDoS protection plan
- implement and manage Azure Firewall
- Implement network security groups
- Implement a web application firewall (WAF) on Azure Front Door
Module 7: Design and implement private access to Azure Services
In this module you will learn to design and implement private access to Azure Services with Azure Private Link, and virtual network service endpoints.
- Define Azure Private Link and private endpoints
- Design and Configure Private Endpoints
- Integrate a Private Link with DNS and on-premises clients
- Create, configure, and provide access to Service Endpoints
- Configure VNET integration for App Service
Lab : restrict network access to PaaS resources with virtual network service endpoints
Lab : create an Azure private endpoint
Define the difference between Private Link Service and private endpoints
- Design and configure private endpoints
- Explain virtual network service endpoints
- Design and configure access to service endpoints
- Integrate Private Link with DNS
- Integrate your App Service with Azure virtual networks