Microsoft
Azure
General
Configure secure access to your workloads using Azure networking (AZ-1002)


Configure secure access to your workloads using Azure networking 

In this learning path, you practice configuring secure access to workloads using Azure networking. 

About the course


 Skills Covered 

  • Describe Azure virtual network features and components. 
  • Identify features and usage cases for subnets and subnetting. 
  • Identify usage cases for private and public IP addresses. 
  • Create a virtual network and assign IP address. 
  • Identify usage cases and product features of Azure Virtual Network peering. 
  • Configure your network to implement Azure VPN Gateway for transit connectivity. 
  • Extend peering by using a hub and spoke network with user-defined routes and service chaining. 
  • Identify the routing capabilities of an Azure virtual network 
  • Configure routing within a virtual network 
  • Deploy a basic network virtual appliance 
  • Configure routing to send traffic through a network virtual appliance 
  • Configure Azure DNS to host your domain. 
  • Determine when to use network security groups. 
  • Create network security groups. 
  • Implement and evaluate network security group rules. 
  • Describe the function of application security groups. 
  • Explain how Azure Firewall and Azure Firewall Manager work together to protect Azure virtual networks. 
  • Evaluate whether Azure Firewall is the right solution to protect your Azure virtual networks from malicious incoming and outgoing traffic. 
  • Evaluate whether Azure Firewall Premium is the right solution to protect your Azure virtual networks from malicious incoming and outgoing traffic. 
  • Evaluate whether Azure Firewall Manager is the right solution for deploying policies across multiple firewalls. 
  • Identify and describe use cases for Azure Firewall and Azure Firewall Manager. 
  • Create and configure virtual networks 
  • Create and configure network security groups (NSGs) 
  • Create and configure Azure Firewall 
  • Configure network routing 
  • Create DNS zones and configure DNS settings 


Prerequisites 

Please review the prerequisites listed for each module in the course content and click on the provided links for more information. 

Course content

1 – Configure virtual networks

  • Plan virtual networks
  • Create subnets
  • Create virtual networks
  • Plan IP addressing
  • Create public IP addressing
  • Associate public IP addresses
  • Allocate or assign private IP addresses
  • Interactive lab simulation

2 – Configure Azure Virtual Network peering

  • Determine Azure Virtual Network peering uses
  • Determine gateway transit and connectivity
  • Create virtual network peering
  • Extend peering with user-defined routes and service chaining
  • Interactive lab simulation

3 – Manage and control traffic flow in your Azure deployment with routes

  • Identify routing capabilities of an Azure virtual network
  • Exercise – Create custom routes
  • What is an NVA?

4 – Host your domain on Azure DNS

  • What is Azure DNS?
  • Configure Azure DNS to host your domain
  • Dynamically resolve resource name by using alias record

5 – Configure network security groups

  • Implement network security groups
  • Determine network security group rules
  • Determine network security group effective rules
  • Create network security group rules
  • Implement application security groups
  • Interactive lab simulation

6 – Introduction to Azure Firewall

  • What is Azure Firewall?
  • How Azure Firewall works
  • When to use Azure Firewall
  • When to use Azure Firewall Premium

7 – Guided Project – Configure secure access to workloads with Azure virtual networking services