Designing and Implementing Microsoft Azure Networking Solutions (AZ-700) Practice Exam

Designing and Implementing Microsoft Azure Networking Solutions (AZ-700) Practice Exam

Designing and Implementing Microsoft Azure Networking Solutions (AZ-700) Practice Exam

 

The Designing and Implementing Microsoft Azure Networking Solutions (AZ-700) exam validates your proficiency in planning, deploying, and managing intricate networking solutions within the Microsoft Azure cloud platform. 

 

Who should consider This Exam:

  • Network engineers and architects: Deepen your expertise in designing and implementing secure and scalable Azure networking solutions.
  • Cloud engineers and administrators: Enhance your skills in managing and optimizing network resources in Azure.
  • IT professionals seeking career advancement in Azure networking: Validate your expertise and stand out in the job market.

 

Key Roles and Responsibilities:

  • Design and implement core Azure networking infrastructure: Configure virtual networks, subnets, and IP addressing schemes.
  • Manage connectivity services: Establish VPN connections, ExpressRoute connections, and network peering.
  • Design and implement application delivery services: Utilize Azure Load Balancer and Azure Application Gateway to distribute traffic efficiently.
  • Secure network connectivity: Implement network security groups, firewalls, and other security measures.
  • Monitor and troubleshoot network issues: Utilize monitoring tools and diagnose network problems effectively.

 

Exam Details:

  • Format: Multiple-choice and multiple-select questions
  • Time Limit: 2 hours
  • Languages: English
  • Passing Score: 700

 

Course Outline

Domain 1 - Understanding Design and implement core networking infrastructure (20–25%)

1.1 Explain to design and implement private IP addressing for Azure resources

  • Learning to plan and implement network segmentation and address spaces
  • Learning to create a virtual network (VNet)
  • Learning to plan and configure subnetting for services, including VNet gateways, private endpoints, firewalls, application gateways, VNet-integrated platform services, and Azure Bastion
  • Learning to plan and configure subnet delegation
  • Learning to create a prefix for public IP addresses
  • Learning to choose when to use a public IP address prefix
  • Learning to plan and implement a custom public IP address prefix (bring your own IP)
  • Learning to create a new public IP address
  • Learning to associate public IP addresses to resources

1.2 Explain to design and implement name resolution

  • Learning to design name resolution inside a VNet
  • Learning to configure DNS settings for a VNet
  • Learning to design public DNS zones
  • Learning to design private DNS zones
  • Learning to configure a public or private DNS zone
  • Learning to link a private DNS zone to a VNet

1.3 Explain to design and implement VNet connectivity and routing

  • Learning to  design service chaining, including gateway transit
  • Learning to design virtual private network (VPN) connectivity between VNets
  • Learning to implement VNet peering
  • Learning to design and implement user-defined routes (UDRs)
  • Learning to associate a route table with a subnet
  • Learning to configure forced tunneling
  • Learning to diagnose and resolve routing issues
  • Learning to design and implement Azure Route Server
  • Learning to identify appropriate use cases for a Virtual Network NAT gateway
  • Learning to implement a NAT gateway

1.4 Explain to monitor networks

  • Learning to configure monitoring, network diagnostics, and logs in Azure Network Watcher
  • Learning to monitor and repair network health by using Azure Network Watcher
  • Learning to activate and monitor distributed denial-of-service (DDoS) protection
  • Learning to activate and monitor Microsoft Defender for DNS

Domain 2 - Understand to design, implement, and manage connectivity services (20–25%)

2.1 Explain to Design, implement, and manage a site-to-site VPN connection

  • Learning to design a site-to-site VPN connection, including for high availability
  • Learning to select an appropriate VNet gateway SKU for site-to-site VPN requirements
  • Learning to implement a site-to-site VPN connection
  • Learning to identify when to use a policy-based VPN versus a route-based VPN connection
  • Learning to create and configure an IPsec/IKE policy
  • Learning to diagnose and resolve virtual network gateway connectivity issues
  • Learning to implement Azure Extended Network

2.2 Explain to design, implement, and manage a point-to-site VPN connection

  • Learning to select an appropriate virtual network gateway SKU for point-to-site VPN requirements
  • Learning to select and configure a tunnel type
  • Learning to select an appropriate authentication method
  • Learning to configure RADIUS authentication
  • Learning to configure certificate-based authentication
  • Learning to configure authentication by using Azure Active Directory (Azure AD), part of Microsoft Entra
  • Learning to implement a VPN client configuration file
  • Learning to diagnose and resolve client-side and authentication issues
  • Learning to specify Azure requirements for Always On authentication
  • Learning to specify Azure requirements for Azure Network Adapter

2.3 Explain to design, implement, and manage Azure ExpressRoute

  • Learning to select an ExpressRoute connectivity model
  • Learning to select an appropriate ExpressRoute SKU and tier
  • Learning to design and implement ExpressRoute to meet requirements, including cross-region connectivity, redundancy, and disaster recovery
  • Learning to design and implement ExpressRoute options, including Global Reach, FastPath, and ExpressRoute Direct
  • Learning to choose between private peering only, Microsoft peering only, or both
  • Learning to configure private peering
  • Learning to configure Microsoft peering
  • Learning to create and configure an ExpressRoute gateway
  • Learning to connect a virtual network to an ExpressRoute circuit
  • Learning to recommend a route advertisement configuration
  • Learning to configure encryption over ExpressRoute
  • Learning to Implement Bidirectional Forwarding Detection
  • Learning to Diagnose and resolve ExpressRoute connection issues

2.4 Explain to design and implement an Azure Virtual WAN architecture

  • Learning to select a Virtual WAN SKU
  • Learning to design a Virtual WAN architecture, including selecting types and services
  • Learning to create a hub in Virtual WAN
  • Learning to choose an appropriate scale unit for each gateway type
  • Learning to deploy a gateway into a Virtual WAN hub
  • Learning to configure virtual hub routing
  • Learning to create a network virtual appliance (NVA) in a virtual hub
  • Learning to integrate a Virtual WAN hub with a third-party NVA

Domain 3 - Understand to design and implement application delivery services (20–25%)

3.1 Explain to design and implement an Azure Load Balancer

  • Learning to map requirements to features and capabilities of Azure Load Balancer
  • Learning to identify appropriate use cases for Azure Load Balancer
  • Learning to choose an Azure Load Balancer SKU and tier
  • Learning to choose between public and internal
  • Learning to create and configure an Azure Load Balancer
  • Learning to implement a load balancing rule
  • Learning to create and configure inbound NAT rules
  • Learning to create and configure explicit outbound rules, including SNAT

3.2 Explain to design and implement Azure Application Gateway

  • Learning to map requirements to features and capabilities of Azure Application Gateway
  • Learning to identify appropriate use cases for Azure Application Gateway
  • Learning to create a back-end pool
  • Learning to configure health probes
  • Learning to configure listeners
  • Learning to configure routing rules
  • Learning to configure HTTP settings
  • Learning to configure Transport Layer Security (TLS)
  • Learning to configure rewrite sets

3.3 Explain to design and implement Azure Front Door

  • Learning to map requirements to features and capabilities of Azure Front Door
  • Learning to identify appropriate use cases for Azure Front Door
  • Learning to choose an appropriate tier
  • Learning to configure an Azure Front Door, including routing, origins, and endpoints
  • Learning to configure SSL termination and end-to-end SSL encryption
  • Learning to configure caching
  • Learning to configure traffic acceleration
  • Learning to implement rules, URL rewrite, and URL redirect
  • Learning to secure an origin by using Azure Private Link in Azure Front Door

3.4 Explain to design and implement Azure Traffic Manager

  • Learning to identify appropriate use cases for Azure Traffic Manager
  • Learning to configure a routing method
  • Learning to configure endpoints

Domain 4 - Understand to design and implement private access to Azure services (5–10%)

4.1 Explain to design and implement Azure Private Link service and Azure private endpoints

  • Learning to plan an Azure Private Link service
  • Learning to create a Private Link service
  • Learning to integrate a Private Link service with DNS
  • Learning to plan private endpoints
  • Learning to create private endpoints
  • Learning to configure access to Azure resources by using private endpoints
  • Learning to connect on-premises clients to a private endpoint
  • Learning to integrate a private endpoint with DNS

4.2 Explain to design and implement service endpoints

  • Learning to choose when to use a service endpoint
  • Learning to create service endpoints
  • Learning to configure service endpoint policies
  • Learning to configure access to service endpoints

Domain 5 - Understand to Secure network connectivity to Azure resources (15–20%)

5.1 Explain to implement and manage network security groups

  • Learning to create a network security group (NSG)
  • Learning to associate an NSG to a resource
  • Learning to create an application security group (ASG)
  • Learning to associate an ASG to a network interface card (NIC)
  • Learning to create and configure NSG rules
  • Learning to interpret NSG flow logs
  • Learning to validate NSG flow rules
  • Learning to verify IP flow
  • Learning to configure an NSG for remote server administration, including Azure Bastion

5.2 Explain to design and implement Azure Firewall and Azure Firewall Manager

  • Learning to map requirements to features and capabilities of Azure Firewall
  • Learning to select an appropriate Azure Firewall SKU
  • Learning to design an Azure Firewall deployment
  • Learning to create and implement an Azure Firewall deployment
  • Learning to configure Azure Firewall rules
  • Learning to create and implement Azure Firewall Manager policies
  • Learning to create a secure hub by deploying Azure Firewall inside an Azure Virtual WAN hub

5.3 Explain to design and implement a Web Application Firewall (WAF) deployment

  • Learning to map requirements to features and capabilities of WAF
  • Learning to design a WAF deployment
  • Learning to configure detection or prevention mode
  • Learning to configure rule sets for WAF on Azure Front Door
  • Learning to configure rule sets for WAF on Application Gateway
  • Learning to implement a WAF policy
  • Learning to associate a WAF policy

Reviews

How learners rated this courses

4.6

(Based on 1258 reviews)

63%
38%
0%
0%
0%

No reviews yet. Be the first to review!

Write a review

Note: HTML is not translated!
Bad           Good

Tags: Designing and Implementing Microsoft Azure Networking Solutions (AZ-700) Practice Exam, AZ-700 Test, AZ-700 MCQ, AZ-700,