Book description
Prepare to take the NEW Exam AZ-700 with confidence and launch your career as an Azure Network Engineer
Not only does MCA Microsoft Certified Associate Azure Network Engineer Study Guide: Exam AZ-700 help you prepare for your certification exam, it takes a deep dive into the role and responsibilities of an Azure Network Engineer, so you can learn what to expect in your new career. You’ll also have access to additional online study tools, including hundreds of bonus practice exam questions, electronic flashcards, and a searchable glossary of important terms. Prepare smarter with Sybex's superior interactive online learning environment and test bank.
Exam AZ-700, Designing and Implementing Microsoft Azure Networking Solutions, measures your ability to design, implement, manage, secure, and monitor technical tasks such as hybrid networking; core networking infrastructure; routing; networks; and private access to Azure services. With this in-demand certification, you can qualify for jobs as an Azure Network Engineer, where you will work with solution architects, cloud administrators, security engineers, application developers, and DevOps engineers to deliver Azure solutions. This study guide covers 100% of the objectives and all key concepts, including:
- Design, Implement, and Manage Hybrid Networking
- Design and Implement Core Networking Infrastructure
- Design and Implement Routing
- Secure and Monitor Networks
- Design and Implement Private Access to Azure Services
If you’re ready to become the go-to person for recommending, planning, and implementing Azure networking solutions, you’ll need certification with Exam AZ-700. This is your one-stop study guide to feel confident and prepared on test day. Trust the proven Sybex self-study approach to validate your skills and to help you achieve your career goals!
Table of contents
- Cover
- Title Page
- Copyright
- Dedication
- Acknowledgments
- About the Authors
- Table of Exercises
-
Introduction
- What Is Azure?
- About the AZ-700 Certification Exam
- Why Become a Certified Microsoft Azure Network Engineer Associate?
- Preparing to Become a Certified Microsoft Azure Network Engineer Associate
- How to Become a Microsoft Certified Azure Network Engineer
- Who Should Buy This Book
- How This Book Is Organized
- Interactive Online Learning Environment and Test Bank
- Conventions Used in This Book
- Using This Book
- AZ-700 EXAM OBJECTIVES
- Skill Measured: Design, Implement, and Manage Hybrid Networking
- Skill Measured: Design and Implement Core Networking Infrastructure
- Skill Measured: Design and Implement Routing
- Skill Measured: Secure and Monitor Networks
- Skill Measured: Design and Implement Private Access to Azure Services
- How to Contact the Publisher
- Assessment Test
- Answers to Assessment Test
-
Chapter 1: Getting Started with AZ-700 Certification for Azure Networking
- Basics of Cloud Computing and Networking
- Microsoft Azure Overview
- Azure Virtual Network
- Configure Public IP Services
- Configuring Domain Name Services
- Configuring Cross-Virtual Network Connectivity with Peering
- Configuring Virtual Network Traffic Routing
- Configuring Internet Access with Azure Virtual NAT
- Summary
- Exam Essentials
- Hands-On Lab: Design and Deploy a Virtual Network via the Azure Portal
- Review Questions
-
Chapter 2: Design, Deploy, and Manage a Site-to-Site VPN Connection and Point-to-Site VPN Connection
- Overview of Azure VPN Gateway
- Designing an Azure VPN Connection
- Choosing a Virtual Network Gateway SKU for Site-to-Site VPN
- Using Policy-Based VPNs vs. Route-Based VPNs
- Building and Configuring a Virtual Network Gateway
- Building and Configuring a Local Network Gateway
- Building and Configuring an IPsec/IKE Policy
- Configuration Workflow
- Diagnosing and Resolving VPN Gateway Connectivity Issues
- Choosing a VNet Gateway SKU for Point-to-Site VPNs
- Configuring RADIUS, Certificate-Based, and Azure AD Authentication
- Diagnosing and Resolving Client-Side and Authentication Issues
- Summary
- Exam Essentials
- Review Questions
-
Chapter 3: Design, Deploy, and Manage Azure ExpressRoute
- Getting Started with Azure ExpressRoute
- Choosing Between the Network Service Provider and ExpressRoute Direct
- Designing and Deploying Azure Cross-Region Connectivity between Multiple ExpressRoute Locations
- Choosing an Appropriate ExpressRoute SKU and Tier
- Designing and Deploying ExpressRoute Global Reach
- Deploying ExpressRoute Global Reach
- Designing and Deploying ExpressRoute FastPath
- Evaluate Private Peering Only, Microsoft Peering Only, or Both
- Setting Up Private Peering
- Setting Up Microsoft Peering
- Building and Configuring an ExpressRoute Gateway
- Connect a Virtual Network to an ExpressRoute Circuit
- Recommend a Route Advertisement Configuration
- Configure Encryption over ExpressRoute
- Deploy Bidirectional Forwarding Detection
- Diagnose and Resolve ExpressRoute Connection Issues
- Summary
- Exam Essentials
- Review Questions
-
Chapter 4: Design and Deploy Core Networking Infrastructure: Private IP and DNS
- Designing Private IP Addressing for VNets
- Deploying a VNet
- Preparing Subnetting for Services
- Configuring Subnetting for Services
- Preparing and Configuring a Subnet Delegation
- Planning and Configuring Subnetting for Azure Route Server
- Designing and Configuring Public DNS Zones
- Creating an Azure DNS Zone and Record Using PowerShell
- Designing and Configuring Private DNS Zones
- Designing Name Resolution Inside a VNet
- Linking a Private DNS Zone to a VNet
- Summary
- Exam Essentials
- Review Questions
-
Chapter 5: Design and Deploy Core Networking Infrastructure and Virtual WANs
- Overview of Virtual Network Peering, Service Chaining, and Gateway Transit
- Design VPN Connectivity between VNets
- Deploy VNet Peering
- Design an Azure Virtual WAN Architecture
- Choosing SKUs and Services for Virtual WANs
- Connect a VNet Gateway to an Azure Virtual WAN and Build a Hub in a Virtual WAN
- Build a Virtual Network Appliance (NVA) in a Virtual Hub
- Set Up Virtual Hub Routing
- Build a Connection Unit
- Summary
- Exam Essentials
- Review Questions
-
Chapter 6: Design and Deploy VNet Routing and Azure Load Balancer
- Design and Deploy User-Defined Routes
- Associate a Route Table with a Subnet
- Set Up Forced Tunneling
- Diagnose and Resolve Routing Issues
- Design and Deploy Azure Route Server
- Choosing an Azure Load Balancer SKU
- Choosing Between Public and Internal Load Balancers
- Build and Configure an Azure Load Balancer (Including Cross-Region)
- Deploy a Load Balancing Rule
- Build and Configure Inbound NAT Rules
- Build Explicit Outbound Rules for a Load Balancer
- Summary
- Exam Essentials
- Review Questions
-
Chapter 7: Design and Deploy Azure application gateway, Azure front door, and Virtual NAT
- Azure Application Gateway Overview
- Scaling Options for Application Gateway and WAF
- Overview of Application Gateway Deployment
- Redirection Overview
- Features and Capabilities of Azure Front Door SKUs
- SSL Termination and End-to-End SSL Encryption
- Multisite Listeners
- Back-Ends, Back-End Pools, Back-End Host Headers, and Back-End Health Probes
- Routing and Routing Rules
- URL Redirection and URL Rewriting in Front Door Standard and Premium
- Design and Deploy Traffic Manager Profiles
- Traffic Manager Routing Methods
- Virtual Network NAT
- Associate a Virtual Network NAT with a Subnet
- Summary
- Exam Essentials
- Review Questions
-
Chapter 8: Design, Deploy, and Manage Azure Firewall and Network Security Groups
- Azure Firewall and Firewall Manager Features
- Build and Configure an Azure Firewall Deployment
- Azure Firewall Policy
- Build and Configure a Secure Hub within an Azure Virtual WAN Hub
- Integrate an Azure Virtual WAN Hub with a Third-Party Network Virtual Appliance
- Create and Attach a Network Security Group to a Resource
- Create an Application Security Group and Attach It to a NIC
- Create and Configure NSG Rules and Read Network Security Group Flow Logs
- Validate NSG Flow Rules
- Verify IP Flow
- Summary
- Exam Essentials
- Review Questions
-
Chapter 9: Design and Deploy Azure Web Application Firewall and Monitor Networks
- Azure Web Application Firewall Functions and Features
- Set Up Detection or Prevention Mode
- Azure Front Door WAF Policy Rule Sets
- Application Gateway WAF Policy Rule Sets
- Deploy and Attach WAF Policies
- Set Up Network Health Alerts and Logging Using Azure Monitor
- Build and Configure Azure Network Watcher
- Build and Configure a Connection Monitor Instance
- Build, Configure, and Use Traffic Analytics
- Build and Configure NSG Flow Logs
- Enable and Set Up Diagnostic Logging
- Summary
- Exam Essentials
- Review Questions
-
Chapter 10: Design and Deploy Private Access to Azure Services
- Overview of Private Link Services and Private Endpoints
- Plan Private Endpoints
- Configure Access to Private Endpoints
- Integrate Private Link with DNS and Private Link Services with On-Premises Clients
- Set Up Service Endpoints and Configure Service Endpoint Policies
- Overview of Service Tags and Access to Service Endpoints
- Integrating App Services into Regional VNets
- Configure Azure Kubernetes Service (AKS) for Regional VNet Integration
- Configure Clients to Access the App Service Environment
- Summary
- Exam Essentials
- Review Questions
-
Appendix: Answers to Review Questions
- Chapter 1: Getting Started with AZ-700 Certification for Azure Networking
- Chapter 2: Design, Deploy, and Manage a Site-to-Site VPN Connection and Point-to-Site VPN Connection
- Chapter 3: Design, Deploy, and Manage Azure ExpressRoute
- Chapter 4: Design and Deploy Core Networking Infrastructure: Private IP and DNS
- Chapter 5: Design and Deploy Core Networking Infrastructure and Virtual WANs
- Chapter 6: Design and Deploy VNet Routing and Azure Load Balancer
- Chapter 7: Design and Deploy Azure application gateway, Azure front door, and Virtual NAT
- Chapter 8: Design, Deploy, and Manage Azure Firewall and Network Security Groups
- Chapter 9: Design and Deploy Azure Web Application Firewall and Monitor Networks
- Chapter 10: Design and Deploy Private Access to Azure Services
- Index
- End User License Agreement
Product information
- Title: MCA Microsoft Certified Associate Azure Network Engineer Study Guide
- Author(s):
- Release date: October 2022
- Publisher(s): Sybex
- ISBN: 9781119872924
You might also like
book
MCA Microsoft Certified Associate Azure Security Engineer Study Guide
Prepare for the MCA Azure Security Engineer certification exam faster and smarter with help from Sybex …
book
MCA Microsoft Certified Associate Azure Administrator Study Guide
Learn what it takes to be an Azure Administrator and efficiently prepare for Exam AZ-104 with …
book
Cyber Security on Azure: An IT Professional’s Guide to Microsoft Azure Security
Prevent destructive attacks to your Azure public cloud infrastructure, remove vulnerabilities, and instantly report cloud security …
book
Exam Ref AZ-700 Designing and Implementing Microsoft Azure Networking Solutions
Prepare for Microsoft Exam AZ-700 and help demonstrate your real-world mastery of planning, implementing, and maintaining …