MCA Microsoft Certified Associate Azure Network Engineer Study Guide

MCA Microsoft Certified Associate Azure Network Engineer Study Guide

by Puthiyavan Udayakumar, Kathiravan Udayakumar
Released October 2022
Publisher(s): Sybex
ISBN: 9781119872924

Read it now on the O’Reilly learning platform with a 10-day free trial.

O’Reilly members get unlimited access to books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Book description

Prepare to take the NEW Exam AZ-700 with confidence and launch your career as an Azure Network Engineer

Not only does MCA Microsoft Certified Associate Azure Network Engineer Study Guide: Exam AZ-700 help you prepare for your certification exam, it takes a deep dive into the role and responsibilities of an Azure Network Engineer, so you can learn what to expect in your new career. You’ll also have access to additional online study tools, including hundreds of bonus practice exam questions, electronic flashcards, and a searchable glossary of important terms. Prepare smarter with Sybex's superior interactive online learning environment and test bank.

Exam AZ-700, Designing and Implementing Microsoft Azure Networking Solutions, measures your ability to design, implement, manage, secure, and monitor technical tasks such as hybrid networking; core networking infrastructure; routing; networks; and private access to Azure services. With this in-demand certification, you can qualify for jobs as an Azure Network Engineer, where you will work with solution architects, cloud administrators, security engineers, application developers, and DevOps engineers to deliver Azure solutions. This study guide covers 100% of the objectives and all key concepts, including:

  • Design, Implement, and Manage Hybrid Networking
  • Design and Implement Core Networking Infrastructure
  • Design and Implement Routing
  • Secure and Monitor Networks
  • Design and Implement Private Access to Azure Services

If you’re ready to become the go-to person for recommending, planning, and implementing Azure networking solutions, you’ll need certification with Exam AZ-700. This is your one-stop study guide to feel confident and prepared on test day. Trust the proven Sybex self-study approach to validate your skills and to help you achieve your career goals!

Table of contents

  1. Cover
  2. Title Page
  3. Copyright
  4. Dedication
  5. Acknowledgments
  6. About the Authors
    1. About the Technical Editor
  7. Table of Exercises
  8. Introduction
    1. What Is Azure?
    2. About the AZ-700 Certification Exam
    3. Why Become a Certified Microsoft Azure Network Engineer Associate?
    4. Preparing to Become a Certified Microsoft Azure Network Engineer Associate
    5. How to Become a Microsoft Certified Azure Network Engineer
    6. Who Should Buy This Book
    7. How This Book Is Organized
    8. Interactive Online Learning Environment and Test Bank
    9. Conventions Used in This Book
    10. Using This Book
    11. AZ-700 EXAM OBJECTIVES
    12. Skill Measured: Design, Implement, and Manage Hybrid Networking
    13. Skill Measured: Design and Implement Core Networking Infrastructure
    14. Skill Measured: Design and Implement Routing
    15. Skill Measured: Secure and Monitor Networks
    16. Skill Measured: Design and Implement Private Access to Azure Services
    17. How to Contact the Publisher
    18. Assessment Test
    19. Answers to Assessment Test
  9. Chapter 1: Getting Started with AZ-700 Certification for Azure Networking
    1. Basics of Cloud Computing and Networking
    2. Microsoft Azure Overview
    3. Azure Virtual Network
    4. Configure Public IP Services
    5. Configuring Domain Name Services
    6. Configuring Cross-Virtual Network Connectivity with Peering
    7. Configuring Virtual Network Traffic Routing
    8. Configuring Internet Access with Azure Virtual NAT
    9. Summary
    10. Exam Essentials
    11. Hands-On Lab: Design and Deploy a Virtual Network via the Azure Portal
    12. Review Questions
  10. Chapter 2: Design, Deploy, and Manage a Site-to-Site VPN Connection and Point-to-Site VPN Connection
    1. Overview of Azure VPN Gateway
    2. Designing an Azure VPN Connection
    3. Choosing a Virtual Network Gateway SKU for Site-to-Site VPN
    4. Using Policy-Based VPNs vs. Route-Based VPNs
    5. Building and Configuring a Virtual Network Gateway
    6. Building and Configuring a Local Network Gateway
    7. Building and Configuring an IPsec/IKE Policy
    8. Configuration Workflow
    9. Diagnosing and Resolving VPN Gateway Connectivity Issues
    10. Choosing a VNet Gateway SKU for Point-to-Site VPNs
    11. Configuring RADIUS, Certificate-Based, and Azure AD Authentication
    12. Diagnosing and Resolving Client-Side and Authentication Issues
    13. Summary
    14. Exam Essentials
    15. Review Questions
  11. Chapter 3: Design, Deploy, and Manage Azure ExpressRoute
    1. Getting Started with Azure ExpressRoute
    2. Choosing Between the Network Service Provider and ExpressRoute Direct
    3. Designing and Deploying Azure Cross-Region Connectivity between Multiple ExpressRoute Locations
    4. Choosing an Appropriate ExpressRoute SKU and Tier
    5. Designing and Deploying ExpressRoute Global Reach
    6. Deploying ExpressRoute Global Reach
    7. Designing and Deploying ExpressRoute FastPath
    8. Evaluate Private Peering Only, Microsoft Peering Only, or Both
    9. Setting Up Private Peering
    10. Setting Up Microsoft Peering
    11. Building and Configuring an ExpressRoute Gateway
    12. Connect a Virtual Network to an ExpressRoute Circuit
    13. Recommend a Route Advertisement Configuration
    14. Configure Encryption over ExpressRoute
    15. Deploy Bidirectional Forwarding Detection
    16. Diagnose and Resolve ExpressRoute Connection Issues
    17. Summary
    18. Exam Essentials
    19. Review Questions
  12. Chapter 4: Design and Deploy Core Networking Infrastructure: Private IP and DNS
    1. Designing Private IP Addressing for VNets
    2. Deploying a VNet
    3. Preparing Subnetting for Services
    4. Configuring Subnetting for Services
    5. Preparing and Configuring a Subnet Delegation
    6. Planning and Configuring Subnetting for Azure Route Server
    7. Designing and Configuring Public DNS Zones
    8. Creating an Azure DNS Zone and Record Using PowerShell
    9. Designing and Configuring Private DNS Zones
    10. Designing Name Resolution Inside a VNet
    11. Linking a Private DNS Zone to a VNet
    12. Summary
    13. Exam Essentials
    14. Review Questions
  13. Chapter 5: Design and Deploy Core Networking Infrastructure and Virtual WANs
    1. Overview of Virtual Network Peering, Service Chaining, and Gateway Transit
    2. Design VPN Connectivity between VNets
    3. Deploy VNet Peering
    4. Design an Azure Virtual WAN Architecture
    5. Choosing SKUs and Services for Virtual WANs
    6. Connect a VNet Gateway to an Azure Virtual WAN and Build a Hub in a Virtual WAN
    7. Build a Virtual Network Appliance (NVA) in a Virtual Hub
    8. Set Up Virtual Hub Routing
    9. Build a Connection Unit
    10. Summary
    11. Exam Essentials
    12. Review Questions
  14. Chapter 6: Design and Deploy VNet Routing and Azure Load Balancer
    1. Design and Deploy User-Defined Routes
    2. Associate a Route Table with a Subnet
    3. Set Up Forced Tunneling
    4. Diagnose and Resolve Routing Issues
    5. Design and Deploy Azure Route Server
    6. Choosing an Azure Load Balancer SKU
    7. Choosing Between Public and Internal Load Balancers
    8. Build and Configure an Azure Load Balancer (Including Cross-Region)
    9. Deploy a Load Balancing Rule
    10. Build and Configure Inbound NAT Rules
    11. Build Explicit Outbound Rules for a Load Balancer
    12. Summary
    13. Exam Essentials
    14. Review Questions
  15. Chapter 7: Design and Deploy Azure application gateway, Azure front door, and Virtual NAT
    1. Azure Application Gateway Overview
    2. Scaling Options for Application Gateway and WAF
    3. Overview of Application Gateway Deployment
    4. Redirection Overview
    5. Features and Capabilities of Azure Front Door SKUs
    6. SSL Termination and End-to-End SSL Encryption
    7. Multisite Listeners
    8. Back-Ends, Back-End Pools, Back-End Host Headers, and Back-End Health Probes
    9. Routing and Routing Rules
    10. URL Redirection and URL Rewriting in Front Door Standard and Premium
    11. Design and Deploy Traffic Manager Profiles
    12. Traffic Manager Routing Methods
    13. Virtual Network NAT
    14. Associate a Virtual Network NAT with a Subnet
    15. Summary
    16. Exam Essentials
    17. Review Questions
  16. Chapter 8: Design, Deploy, and Manage Azure Firewall and Network Security Groups
    1. Azure Firewall and Firewall Manager Features
    2. Build and Configure an Azure Firewall Deployment
    3. Azure Firewall Policy
    4. Build and Configure a Secure Hub within an Azure Virtual WAN Hub
    5. Integrate an Azure Virtual WAN Hub with a Third-Party Network Virtual Appliance
    6. Create and Attach a Network Security Group to a Resource
    7. Create an Application Security Group and Attach It to a NIC
    8. Create and Configure NSG Rules and Read Network Security Group Flow Logs
    9. Validate NSG Flow Rules
    10. Verify IP Flow
    11. Summary
    12. Exam Essentials
    13. Review Questions
  17. Chapter 9: Design and Deploy Azure Web Application Firewall and Monitor Networks
    1. Azure Web Application Firewall Functions and Features
    2. Set Up Detection or Prevention Mode
    3. Azure Front Door WAF Policy Rule Sets
    4. Application Gateway WAF Policy Rule Sets
    5. Deploy and Attach WAF Policies
    6. Set Up Network Health Alerts and Logging Using Azure Monitor
    7. Build and Configure Azure Network Watcher
    8. Build and Configure a Connection Monitor Instance
    9. Build, Configure, and Use Traffic Analytics
    10. Build and Configure NSG Flow Logs
    11. Enable and Set Up Diagnostic Logging
    12. Summary
    13. Exam Essentials
    14. Review Questions
  18. Chapter 10: Design and Deploy Private Access to Azure Services
    1. Overview of Private Link Services and Private Endpoints
    2. Plan Private Endpoints
    3. Configure Access to Private Endpoints
    4. Integrate Private Link with DNS and Private Link Services with On-Premises Clients
    5. Set Up Service Endpoints and Configure Service Endpoint Policies
    6. Overview of Service Tags and Access to Service Endpoints
    7. Integrating App Services into Regional VNets
    8. Configure Azure Kubernetes Service (AKS) for Regional VNet Integration
    9. Configure Clients to Access the App Service Environment
    10. Summary
    11. Exam Essentials
    12. Review Questions
  19. Appendix: Answers to Review Questions
    1. Chapter 1: Getting Started with AZ-700 Certification for Azure Networking
    2. Chapter 2: Design, Deploy, and Manage a Site-to-Site VPN Connection and Point-to-Site VPN Connection
    3. Chapter 3: Design, Deploy, and Manage Azure ExpressRoute
    4. Chapter 4: Design and Deploy Core Networking Infrastructure: Private IP and DNS
    5. Chapter 5: Design and Deploy Core Networking Infrastructure and Virtual WANs
    6. Chapter 6: Design and Deploy VNet Routing and Azure Load Balancer
    7. Chapter 7: Design and Deploy Azure application gateway, Azure front door, and Virtual NAT
    8. Chapter 8: Design, Deploy, and Manage Azure Firewall and Network Security Groups
    9. Chapter 9: Design and Deploy Azure Web Application Firewall and Monitor Networks
    10. Chapter 10: Design and Deploy Private Access to Azure Services
  20. Index
  21. End User License Agreement

Product information

  • Title: MCA Microsoft Certified Associate Azure Network Engineer Study Guide
  • Author(s): Puthiyavan Udayakumar, Kathiravan Udayakumar
  • Release date: October 2022
  • Publisher(s): Sybex
  • ISBN: 9781119872924