Q1: What is Azure Virtual Network, and how is it used?
Answer:
Azure Virtual Network (VNet) is a private network within Azure that enables communication between Azure resources, such as VMs, databases, and other services. It allows you to define IP address spaces, subnets, and route tables to control network traffic. VNets can be connected to on-premises networks using VPNs or ExpressRoute for hybrid cloud scenarios.
Q2: What is the difference between a VPN Gateway and ExpressRoute in Azure?
Answer:
-
VPN Gateway: Provides a secure, encrypted connection over the internet between your on-premises network and Azure. It is a cost-effective option for smaller businesses.
-
ExpressRoute: A dedicated, private connection between on-premises networks and Azure, providing faster and more reliable connectivity than VPNs. It is ideal for enterprises requiring high-throughput, low-latency connections.
Q3: How does Azure Load Balancer work, and when would you use it?
Answer:
Azure Load Balancer distributes incoming network traffic across multiple backend servers or resources to ensure high availability and reliability. It operates at the transport layer (Layer 4), providing load balancing for both inbound and outbound traffic. Use it for scenarios where you need to distribute traffic for VMs, web servers, or databases.
Q4: What is Network Security Group (NSG), and how is it used in Azure?
Answer:
A Network Security Group (NSG) in Azure is a set of rules used to control inbound and outbound traffic to resources within a VNet. It allows you to define which traffic is allowed or denied based on IP addresses, ports, and protocols. NSGs are commonly applied to VMs and subnets for securing network traffic.
Q5: How would you implement a hybrid cloud network in Azure?
Answer:
You can implement a hybrid cloud network in Azure using tools like Azure VPN Gateway, Azure ExpressRoute, and Azure Virtual Network Peering. These tools allow you to securely connect your on-premises network to Azure, enabling seamless communication between on-premises and cloud resources.