This course teaches Network Engineers how to design, implement, and maintain Azure networking solutions. This course covers the process of designing, implementing, and managing core Azure networking infrastructure, Hybrid Networking connections, load balancing traffic, network routing, private access to Azure services, network security and monitoring. Learn how to design and implement a secure, reliable, network infrastructure in Azure and how to establish hybrid connectivity, routing, private access to Azure services, and monitoring in Azure.
Duration
3 days
Audience Profile
This course is for Network Engineers looking to specialize in Azure networking solutions. An Azure Network engineer designs and implements core Azure networking infrastructure, hybrid networking connections, load balance traffic, network routing, private access to Azure services, network security and monitoring. The azure network engineer will manage networking solutions for optimal performance, resiliency, scale, and security.
Successful Azure Network Engineers start this role with experience in enterprise networking, on-premises or cloud infrastructure and network security.
Understanding of on-premises virtualization technologies, including: VMs, virtual networking, and virtual hard disks.
Understanding of network configurations, including TCP/IP, Domain Name System (DNS), virtual private networks (VPNs), firewalls, and encryption technologies.
Understanding of software defined networking.
Understanding hybrid network connectivity methods, such as VPN.
Understanding resilience and disaster recovery, including high availability and restore operations.
Course Outline
Module 1: Introduction to Azure Virtual Networks
Lessons
• Explore Azure Virtual Networks
• Configure public IP services
• Design name resolution for your Virtual Network
• Enable Cross-VNet connectivity with peering
• Implement virtual network traffic routing
• Configure internet access with Azure Virtual NAT
Lessons
• Design and implement Azure VPN Gateway
• Connect networks with Site-to-site VPN connections
• Connect devices to networks with Point-to-site VPN connections
• Connect remote resources by using Azure Virtual WANs
• Create a network virtual appliance (NVA) in a virtual hub
Lessons
• Explore Azure ExpressRoute
• Design an ExpressRoute deployment
• Configure peering for an ExpressRoute deployment
• Connect an ExpressRoute circuit to a VNet
Hands-On Lab
• Exercise: create a Virtual WAN by using Azure Portal
• Exercise: create and configure a virtual network gateway
Module 2: Design and Implement Hybrid Networking
Module 3: Design and Implement Azure ExpressRoute
Hands-On Lab
• Exercise: configure an ExpressRoute gateway
• Exercise: provision an ExpressRoute circuit
Lessons
• Explore load balancing
• Design and implement Azure load balancer using the Azure portal
• Explore Azure Traffic Manager
Hands-On Lab
• Exercise: create a Traffic Manager profile using the Azure portal
• Exercise: create and configure an Azure load balancer
Module 4: Load Balancing Non-HTTP(S) Traffic in Azure
• Connect geographically dispersed networks with ExpressRoute global reach
• Improve data path performance between networks with ExpressRoute FastPath
• Troubleshoot ExpressRoute connection issues
Hands-On Lab
• Exercise: deploy Azure application gateway
• Exercise: create a front door for a highly available web application
Lessons
• Secure your virtual networks in the Azure portal
• Deploy Azure DDoS Protection by using the Azure portal
• Deploy Network Security Groups by using the Azure portal
• Design and implement Azure Firewall
• Working with Azure Firewall Manager
• Implement a Web Application Firewall on Azure Front Door
Module 6: Design and Implement Network Security
Lessons
• Design Azure application gateway
• Configure Azure application gateway
• Design and configure Azure front door
Module 5: Load Balancing HTTP(S) Traffic in Azure
Module 7: Design and Implement Private Access to Azure Services
Lessons
• Define Private Link Service and private endpoint
• Explain virtual network service endpoints
• Integrate Private Link with DNS
• Integrate your App Service with Azure virtual networks
Hands-On Lab
• Exercise: create an Azure private endpoint using Azure PowerShell
• Exercise: restrict network access to PaaS resources with virtual network service
endpoints
Hands-On Lab
• Exercise: deploy and configure Azure Firewall using the Azure portal
• Exercise: secure your virtual hub using Azure Firewall Manager
• Exercise: configure DDoS Protection on a virtual network using the Azure portal
Module 8: Design and Implement Network Monitoring
Lessons
• Monitor your networks with Azure Monitor
Hands-On Lab
• Exercise: Monitor a load balancer resource by using Azure Monitor