AZ-700 Designing & Implementing Azure Networking with SIMS from Udemy

Have access to the following:

Training from an instructor of over 20 years who has trained thousands of people and also a Microsoft Certified Trainer
Lecture that explains the concepts in an easy to learn method for someone that is just starting out with this material
Instructor led hands on and simulations to practice that can be followed even if you have little to no experience

Plan and configure subnet delegation

Create a prefix for public IP addresses

Choose when to use a public IP address prefix

Plan and implement a custom public IP address prefix (bring your own IP)

Create a new public IP address

Associate public IP addresses to resources

Design and implement name resolution

Design name resolution inside a VNet
Configure DNS settings inside a VNet
Design public DNS zones
Design private DNS zones
Configure a public or private DNS zone
Link a private DNS zone to a VNet
Plan and implement Azure Private DNS Resolver

Design and implement VNet connectivity and routing

Design service chaining, including gateway transit
Design virtual private network (VPN) connectivity between VNets
Implement VNet peering
Design and implement user-defined routes (UDRs)
Associate a route table with a subnet
Configure forced tunneling
Diagnose and resolve routing issues
Understanding Azure Route Server
Identify appropriate use cases for a Virtual Network NAT gateway
Implement a NAT gateway
Cleaning up some of the Azure resources

Monitor networks

Creating a couple of VMs with networking to monitor
Configure monitoring, network diagnostics, and logs in Azure Network Watcher
Monitor and repair network health by using Azure Network Watcher
Activate and monitor distributed denial-of-service (DDoS) protection
Understanding Microsoft Defender for DNS

Design, implement, and manage a site-to-site VPN connection

Design a site-to-site VPN connection, including for high availability
Select an appropriate VNet gateway SKU for site-to-site VPN requirements
Implement a site-to-site VPN connection
Identify when to use a policy-based VPN versus a route-based VPN connection
Create and configure an IPsec/IKE policy
Diagnose and resolve virtual network gateway connectivity issues
Understanding Azure Extended Network

Design, implement, and manage a point-to-site VPN connection

Select an appropriate virtual network gateway SKU for point-to-site VPN requirements
Select the appropriate tunnel type
Select an appropriate authentication method
Configure RADIUS authentication
Configure certificate-based authentication and implement a VPN client config file
Configure authentication by using Azure Azure AD, part of Microsoft Entra
Diagnose and resolve client-side and authentication issues
Specify Azure requirements for Always On authentication
Understanding Azure Network Adapter
Removing the VPN gateway

Design, implement, and manage Azure ExpressRoute

Select an ExpressRoute connectivity model
Select an appropriate ExpressRoute SKU and tier
Design and implement ExpressRoute, cross-region, redundancy, & disaster recovery
Design and implement ExpressRoute Global Reach, FastPath, and ExpressRoute Direct
Choose between private peering only, Microsoft peering only, or both
Create an ExpressRoute Circuit & check the private peering & Microsoft Peering status
Create an ExpressRoute gateway
Encryption over ExpressRoute
Bidirectional Forwarding Detection
Diagnose and resolve ExpressRoute connection issues
Removing ExpressRoute resources before moving on

Design and implement an Azure Virtual WAN architecture

Identify use for Azure Virtual WANs
Select a Virtual WAN SKU
Design a Virtual WAN architecture, including selecting types and services
Create a hub in Virtual WAN
Choose an appropriate scale unit for each gateway type
Deploy a gateway into a Virtual WAN hub
Configure virtual hub routing
Integrate a Virtual WAN hub with a third-party NVA
Removing Azure Virtual WAN resources

Design and implement an Azure Load Balancer

Map requirements to features and capabilities of Azure Load Balancer
Identify appropriate use cases for Azure Load Balancer
Choose an Azure Load Balancer SKU and tier
Choose between public and internal
Create and configure an Azure Load Balancer
Implement a load balancing rule
Create and configure inbound NAT rules
Create and configure explicit outbound rules, including SNAT
Removing the Azure Load Balancer before moving forward

Design and implement Azure Application Gateway

Map requirements to features and capabilities of Azure Application Gateway
Identify appropriate use cases for Azure Application Gateway
Starting the setup process for an Azure Application Gateway
Create a back-end pool
Configure routing rules
Configure HTTP settings and finalizing the gateway creation
Configure health probes
Configure listeners
Configure Transport Layer Security (TLS)
Configure rewrite sets
Removing the Azure Application Gateway

Design and implement Azure Front Door

Map requirements to features and capabilities of Azure Front Door
Identify appropriate use cases for Azure Front Door
Choose an appropriate tier
Understanding Azure Application Gateway vs Azure Front Door
Configure an Azure Front Door, including routing, origins, and endpoints
Configure SSL termination and end-to-end SSL encryption
Configure caching
Traffic acceleration, URL rewrite, URL redirect and Azure Private Link
Removing the Azure Front Door

Design and implement Azure Traffic Manager

Identify appropriate use of Azure Traffic Manager
Configure a routing method
Configure endpoints
Removing the Traffic Manager Profile

Design and implement Azure Private Link service and Azure private endpoints

Plan an Azure Private Link service
Create a Private Link service
Integrate a Private Link service with DNS
Visualizing Service Endpoints and Private Endpoints
Create private endpoints
Configure access to Azure resources by using private endpoints
Connect on-premises clients to a private endpoint
Integrate a private endpoint with DNS

Design and implement service endpoints

Choose when to use a service endpoint
Create service endpoints
Configure service endpoint policies and access to service endpoints

Implement and manage network security groups

Basics of NSGs and ASGs
Creating a subnet and Windows 11 VM for testing
Create a network security group (NSG)
Configure NSG rules and associate an NSG to a resource
Create an application security group (ASG)
Associate an ASG to a network interface card (NIC)
Removing VMs that are no longer needed
Interpret and Validate NSG flow logs
Verify IP flow
Configure an NSG for remote server administration, including Azure Bastion

Design and implement Azure Firewall and Azure Firewall Manager

Map requirements to features and capabilities of Azure Firewall
Select an appropriate Azure Firewall SKU
Design an Azure Firewall deployment
Create and implement an Azure Firewall deployment
Configure Azure Firewall rules
Create and implement Azure Firewall Manager policies
Create a secure hub by deploying Azure Firewall inside an Azure Virtual WAN hub

Design and implement a Web Application Firewall (WAF) deployment

Map requirements to features and capabilities of WAF
Design a WAF deployment
Detection or prevention mode
Configure a rule for WAF on Azure Front Door
Configure a rule for WAF on Application Gateway
Implement a WAF policy
Associate a WAF policy
Getting rid of unneeded Azure resources

What's inside

Learning objectives

Learn the concepts and perform hands on activities needed to pass the az-700 exam
Gain a tremendous amount of knowledge involving networking microsoft azure services

Get loads of hands on experience with networking microsoft azure services
Utilize hands on simulations that can be access anytime, anywhere!

Learn the concepts and perform hands on activities needed to pass the az-700 exam
Gain a tremendous amount of knowledge involving networking microsoft azure services
Get loads of hands on experience with networking microsoft azure services
Utilize hands on simulations that can be access anytime, anywhere!

Syllabus

Introduction

Welcome to the course!

Understanding the Microsoft 365 and Azure Environment

Having a Solid Foundation of Active Directory Domains

Career center

Learners who complete AZ-700 Designing & Implementing Azure Networking with SIMS will develop knowledge and skills that may be useful to these careers:

Azure Network Engineer

An Azure Network Engineer designs, implements, and manages an organization's cloud networking infrastructure on Microsoft Azure. This role is central to ensuring secure, reliable, and high-performing network connectivity for cloud-based applications and services. The course provides comprehensive, hands-on experience in designing and implementing Azure networking services, covering aspects like VNet connectivity, routing with UDRs, VPNs, ExpressRoute, and Virtual WAN. Learners will gain proficiency in configuring critical components such as Azure Load Balancer, Application Gateway, and Azure Firewall, which are daily tasks for this career. Furthermore, the course's focus on monitoring networks with Azure Network Watcher and securing them with WAF and DDoS protection directly prepares individuals for the operational challenges of an Azure Network Engineer. This specialized training is crucial for those aspiring to build robust and scalable network solutions in the Azure ecosystem.

See salaries and explore the career path for Azure Network Engineer

Azure Administrator

An Azure Administrator is responsible for managing, monitoring, and maintaining an organization's Azure infrastructure, including virtual networks, storage, and compute resources. This role requires hands-on expertise in the daily operations and configuration of Azure services. The course is an exceptional fit for an Azure Administrator as it directly covers the practical skills needed to design, implement, and manage Azure networking components. Learners will gain proficiency in creating and peering virtual networks, configuring DNS, implementing VPNs, and managing ExpressRoute connections. The curriculum's focus on configuring NSGs, Azure Firewall, and monitoring network health with Azure Network Watcher are all core responsibilities of this role. Through instructor-led hands-on labs and simulations, individuals are thoroughly prepared for the routine and complex networking tasks encountered as an Azure Administrator, directly aligning with the AZ-700 certification objective.

See salaries and explore the career path for Azure Administrator

Cloud Network Architect

A Cloud Network Architect is responsible for the strategic design and planning of complex networking solutions within cloud environments, particularly on platforms like Azure. This senior role involves translating business requirements into scalable, secure, and resilient network architectures. The course offers deep insights into designing core Azure networking components, including VNet segmentation, advanced routing strategies, and establishing hybrid connectivity with ExpressRoute and site-to-site VPNs. It delves into high-level design considerations for Azure Virtual WAN, Load Balancer, Application Gateway, and Azure Front Door, all critical for crafting robust cloud architectures. Understanding security implementations like Azure Firewall and WAF from this course is also paramount for a Cloud Network Architect to ensure end-to-end security. This specific training builds the foundational and advanced design skills essential for architectural leadership in cloud networking.

See salaries and explore the career path for Cloud Network Architect

Cloud Networking Engineer

A Cloud Networking Engineer specializes in the design, deployment, and maintenance of network infrastructure within cloud platforms. This role is crucial for ensuring that cloud applications and services have reliable and secure connectivity. This course is directly aligned with the responsibilities of a Cloud Networking Engineer, offering extensive, practical training in designing and implementing Azure networking solutions. Learners will master core concepts such as VNet peering, custom public IP address prefixes, and various VPN connection types. The curriculum dives into advanced services like Azure ExpressRoute, Virtual WAN, Load Balancer, and Application Gateway, providing the specific skills needed to build sophisticated cloud network topologies. Furthermore, the course's coverage of network security groups, Azure Firewall, and WAF equips individuals to implement robust security measures, making this training indispensable for success in this dedicated field.

See salaries and explore the career path for Cloud Networking Engineer

Network Consultant

A Network Consultant advises organizations on network strategy, design, and implementation, often involving transitioning to or optimizing cloud-based networks. This expert role requires comprehensive knowledge of both traditional and cloud networking paradigms. For a Network Consultant, this course provides specialized, in-depth expertise in Azure networking, enabling them to confidently guide clients through complex cloud transformations. The curriculum covers advanced topics such as designing hybrid connectivity solutions like ExpressRoute and Azure Virtual WAN, implementing sophisticated routing with UDRs, and securing environments with Azure Firewall and WAF. The ability to plan and configure private IP addressing, DNS, and various load balancing options are critical consulting skills. This course equips individuals with the practical and theoretical knowledge to recommend and implement optimal Azure networking solutions for diverse client needs, solidifying their expert status.

See salaries and explore the career path for Network Consultant

Solutions Architect

A Solutions Architect designs comprehensive technology solutions that meet specific business requirements, often integrating various cloud and on-premises components. This role requires a broad and deep technical understanding across multiple domains. For a Solutions Architect, this course offers an invaluable foundation in designing and implementing Azure networking. The training covers critical architectural decisions, such as planning VNet segmentation, choosing appropriate connectivity models like ExpressRoute or Virtual WAN for hybrid scenarios, and selecting the right load balancing and application delivery services like Azure Application Gateway or Azure Front Door. Understanding how to integrate Private Link services and implement robust security with Azure Firewall are also key. The course equips learners to make informed design choices for scalable and secure cloud solutions, ensuring network aspects align with overall enterprise strategy.

See salaries and explore the career path for Solutions Architect

Cloud Security Engineer

A Cloud Security Engineer focuses on protecting cloud-based systems and data by designing and implementing robust security controls and practices. They work to identify vulnerabilities and mitigate threats across an organization's cloud infrastructure. This course is highly relevant for a Cloud Security Engineer as it extensively covers network security components within Azure. Learners will gain practical experience with Network Security Groups NSGs, Azure Firewall, and Web Application Firewall WAF, understanding how to configure rules and integrate them into a secure network design. The curriculum also details activating and monitoring distributed denial-of-service DDoS protection and understanding Microsoft Defender for DNS, which are critical for defending against cyber threats. This specific training helps build the practical expertise needed to secure Azure networking environments effectively, a core competency for this career path.

See salaries and explore the career path for Cloud Security Engineer

Network Operations Engineer

A Network Operations Engineer is responsible for the day-to-day management, monitoring, and troubleshooting of network infrastructure to ensure continuous availability and optimal performance. In modern IT, this increasingly involves cloud networks. This course is highly beneficial for a Network Operations Engineer, focusing on the practical implementation and management of Azure networking services. Learners will gain hands-on experience configuring VNet connectivity and routing, managing site-to-site and point-to-site VPNs, and implementing crucial network services like Azure Load Balancer and Application Gateway. A key aspect of this role, troubleshooting network issues, is directly addressed through diagnosing and resolving connectivity problems and utilizing Azure Network Watcher for monitoring and repair. The course's emphasis on hands-on simulations prepares individuals to effectively operate and maintain robust Azure network environments, which is essential for maximizing uptime.

See salaries and explore the career path for Network Operations Engineer

Enterprise Architect

An Enterprise Architect designs the overarching technical strategy and blueprint for an entire organization's IT landscape, ensuring alignment with business goals. This role involves making high-level decisions across various domains, including applications, data, and infrastructure. For an Enterprise Architect, this course provides a strong understanding of how to incorporate Azure networking into broader enterprise designs. The curriculum covers foundational elements like VNet design, IP addressing, and connectivity models, as well as advanced concepts such as Azure Virtual WAN for global networks and ExpressRoute for robust hybrid connections. Understanding the capabilities of Azure Load Balancer, Application Gateway, and Azure Front Door is crucial for designing scalable and resilient application delivery. The detailed coverage of Azure Firewall and WAF also ensures security is woven into the architectural fabric. This course helps validate network design patterns within a comprehensive enterprise strategy.

See salaries and explore the career path for Enterprise Architect

Cloud Engineer

A Cloud Engineer builds, deploys, and manages applications and infrastructure in cloud environments. This generalist role demands a strong grasp of various cloud services, with networking often being a foundational element. This course significantly enhances the capabilities of a Cloud Engineer by providing deep, hands-on knowledge of designing and implementing Azure networking. The curriculum covers essential skills such as setting up virtual networks, managing IP addressing, configuring routing, and implementing different connectivity solutions like site-to-site VPNs and ExpressRoute. Understanding services like Azure Load Balancer, Application Gateway, and Azure Front Door also helps in designing scalable application delivery. The focus on network security groups and Azure Firewall directly contributes to building secure cloud infrastructure, making this course highly relevant for any Cloud Engineer working with Microsoft Azure.

See salaries and explore the career path for Cloud Engineer

Infrastructure Engineer

An Infrastructure Engineer designs, builds, and maintains the core IT infrastructure components that support an organization's operations, increasingly focusing on cloud-based solutions. This course significantly strengthens an Infrastructure Engineer's expertise by providing deep, hands-on knowledge of Azure networking. The curriculum covers fundamental and advanced aspects of configuring virtual networks, managing IP addressing, and implementing various connectivity options such as VNet peering, VPNs, and ExpressRoute for hybrid environments. Understanding services like Azure Load Balancer, Application Gateway, and Azure Firewall, as detailed in the course, is critical for building scalable, resilient, and secure infrastructure. The practical simulations ensure that learners are proficient in implementing the network fabric upon which all other cloud resources depend, making this course highly relevant for modern infrastructure management.

See salaries and explore the career path for Infrastructure Engineer

Site Reliability Engineer

A Site Reliability Engineer SRE ensures the reliability, performance, and availability of critical systems, often in cloud-native environments. This role involves a blend of software engineering and operations to build and maintain scalable infrastructure. This course may be useful for a Site Reliability Engineer by providing deep insights into Azure networking, which is a common source of reliability challenges. The curriculum directly addresses monitoring networks using Azure Network Watcher and diagnosing and resolving routing and connectivity issues. Understanding how to design for high availability with VPNs, ExpressRoute, and load balancers, as covered in the course, is directly applicable to an SRE's goal of preventing outages. The hands-on simulations also equip learners with practical troubleshooting skills essential for maintaining a stable and performant Azure network fabric. This training helps to proactively identify and resolve network-related reliability concerns.

See salaries and explore the career path for Site Reliability Engineer

Data Center Engineer

A Data Center Engineer is traditionally responsible for the physical and logical infrastructure within on-premises data centers, but increasingly manages hybrid environments that integrate with cloud platforms. This course may be helpful for a Data Center Engineer by providing comprehensive insights into integrating on-premises networks with Microsoft Azure. The curriculum offers in-depth coverage of designing and implementing site-to-site VPN connections and Azure ExpressRoute, which are fundamental technologies for establishing secure and high-performance links between a physical data center and the Azure cloud. Understanding concepts like subnet delegation, public IP address prefixes, and name resolution within Azure, as explored in the course, is crucial for seamless hybrid operations. This training helps bridge the knowledge gap between traditional data center infrastructure and modern cloud networking, facilitating successful hybrid cloud deployments and management.

See salaries and explore the career path for Data Center Engineer

DevOps Engineer

A DevOps Engineer bridges the gap between development and operations, automating infrastructure provisioning and application deployment within cloud environments. While their primary focus is often on continuous integration and delivery, a solid understanding of underlying infrastructure is crucial. This course may be helpful for a DevOps Engineer by providing a detailed understanding of how Azure networking services are designed and implemented. Although automating these configurations is typically done via Infrastructure as Code, knowing the capabilities and limitations of VNets, subnets, routing, load balancers, and firewalls discussed in the course is fundamental. This knowledge helps in writing effective automation scripts, troubleshooting deployment issues related to network access, and ensuring that deployed applications have proper connectivity and security. The course's practical approach to Azure networking builds a strong base for integrating network considerations into automated pipelines.

See salaries and explore the career path for DevOps Engineer

Cybersecurity Analyst

A Cybersecurity Analyst monitors systems for threats, investigates security incidents, and helps implement security measures to protect an organization's digital assets. While primarily an analytical and reactive role, understanding the underlying network infrastructure is vital. This course may be useful for a Cybersecurity Analyst by providing a detailed understanding of how Azure network security components are designed and implemented. Although not focused on incident response, the curriculum's coverage of Network Security Groups NSGs, Azure Firewall, Web Application Firewall WAF, and DDoS protection helps an analyst understand where and how network defenses are configured. This knowledge is crucial for interpreting security logs, identifying potential attack vectors, and collaborating with network engineers to enhance security posture. The course helps build a foundation in cloud network defenses, which is important for identifying vulnerabilities and threats within Azure environments.

See salaries and explore the career path for Cybersecurity Analyst