Overview

Learn how to design and implement a secure network infrastructure in Azure and how to establish hybrid connectivity, routing, private access to Azure services, and monitoring in Azure.

Audience Profile

This course is for Network Engineers looking to specialize in Azure networking solutions. An Azure Network engineer designs and implements core Azure networking infrastructure, hybrid networking connections, load balance traffic, network routing, private access to Azure services, network security and monitoring. The azure network engineer will manage networking solutions for optimal performance, resiliency, scale, and security. Successful Azure Network Engineers start this role with experience in enterprise networking, on-premises or cloud infrastructure and network security.

Syllabus

In this module, you learn how to design and implement Azure networking services. You learn about virtual networks, public and private IPs, DNS, virtual network peering, routing, and Azure Virtual NAT.

Learning Objectives
  • Implement virtual networks.
  • Configure public IP services.
  • Design and implement name resolution.
  • Design and implement cross-VNET connectivity.
  • Implement virtual network routing.
  • Design and implement an Azure Virtual Network NAT.

Design and implement hybrid networking solutions such as Site-to-Site VPN connections, Point-to-Site VPN connections, Azure Virtual WAN, and Virtual WAN hubs.

Learning Objectives
  • Design and implement a site-to-site VPN connection
  • Design and implement a point-to-site VPN connection
  • Design and implement authentication for point-to-site VPN connections
  • Design and implement Azure Virtual WAN

You learn how to design and implement Azure ExpressRoute, ExpressRoute Global Reach, ExpressRoute FastPath.

Learning Objectives
  • Design and implement ExpressRoute
  • Design and implement ExpressRoute Global Reach
  • Design and implement ExpressRoute FastPath
  • Troubleshoot ExpressRoute connection issues

You learn the different load balancer options in Azure and how to choose and implement the right Azure solution for non-HTTP(S) traffic.

Learning Objectives
  • Identify the features and capabilities of Azure Load Balancer
  • Design and implement an Azure Load Balancer
  • Implement a Traffic Manager profile

You learn how to design load balancer solutions for HTTP(S) traffic and how to implement Azure Application Gateway and Azure Front Door.

Learning Objectives
  • Design and implement Azure Application Gateway
  • Implement Azure Front Door

You learn to design and implement network security solutions such as Azure DDoS, Network Security Groups, Azure Firewall, and Web Application Firewall.

Learning Objectives
  • Get network security recommendations with Microsoft Defender for Cloud
  • Deploy Azure DDoS Protection by using the Azure portal
  • Design and implement network security groups (NSGs)
  • Design and implement Azure Firewall
  • Design and implement a web application firewall (WAF) on Azure Front Door

You learn to design and implement private access to Azure Services with Azure Private Link, and virtual network service endpoints.

Learning Objectives
  • Explain virtual network service endpoints.
  • Define Private Link Service and private endpoints.
  • Integrate private endpoints with DNS.
  • Design and configure private endpoints.
  • Design and configure access to service endpoints.
  • Integrate your App Service with Azure virtual networks.

You learn to design and implement network monitoring solutions such as Azure Monitor and Network watcher.

Learning Objectives
  • Configure network health alerts and logging by using Azure Monitor
  • Create and configure a Connection Monitor instance
  • Configure and use Traffic Analytics
  • Configure NSG flow logs
  • Enable and configure diagnostic logging
  • Configure Azure Network Watcher