MULTI CLOUD INTERVIEW QUESTIONS

Network 

1. How to make communication from one Vnet to another Vnet?

   Configure Vnet peering to make one Vnet to another Vnet communication

   Virtual network peering enables you to connect two Azure virtual networks seamlessly. Once peered, the virtual networks appear as one, for connectivity purposes.

   The traffic between virtual machines in the peered virtual networks is routed through the Microsoft backbone infrastructure, much like traffic is routed between virtual machines in the same virtual network, through private IP addresses only. Azure supports:

   V Net peering – Connecting V Nets within the same Azure region

   Global V Net peering – Connecting V  Nets across Azure regions

2. Can we move V Net to another region?

    You can use an Azure Resource Manager template to complete the move of the virtual network to another region. You do this by exporting the virtual network to a template, modifying the parameters to match the destination region, and then deploying the template to the new region.

3. What is Network Security Group

   A network security group is to control inbound and outbound traffic or it allows or Denies the traffic coming to the Virtual machine or Subnet level

   NSG can be associated with the Vmnic level/ Subnet level or both

   Traffic can be allowed or Deny based on rules in the NSG

4. How many default rules are in NSG

   There are 3 inbound default rules and 3 outbound default rules and these cannot be deleted

5. How do you securely connect an on-premises network to Azure Virtual Network?

   There are three ways to connect an on-premises network to Azure Virtual Network (V Net).

   • Azure ExpressRoute– Azure ExpressRoute uses a private, dedicated, and high-bandwidth connection to extend the on-premises network to Azure. This connection is established using partner networks like [ Bsnl, Jio, etc.,]
   • Site-to-site VPN– Site-to-site VPN uses Azure VPN Gateway to connect to an on-premises network’s VPN device having a public IP address, which can be an Office network or Other Data center
   • Point-to-site VPN– Point-to-site VPN uses Azure VPN Gateway to connect from individual computers located on-premises like Work Home Machines
6. What are the Load balancers
   1. Azure Load balancer

   it is just like a network load balancer. It equally distributes traffic to backend servers

   ==> It is a proxy-based routing

   ==> it supports TCP/UDP protocol

   ==> It works on OSI layer 4

   1. Application gateway

   ==> It works as URL/Path-based routing

   ==> It works on OSI layer 7

   ==> It supports multiple backend pool

   ==> it supports WAF

   ==> It has more application awareness

   2. Global Load balancer ( it works between the regions
   • a)Traffic Manager == It works on DNS-based principles and it can be configured using routing methods
   • è Priority
   • Weightage
   • Performance
   • geographical
   • multi value
   • subnet

b)Azure front door èit works as URL-based and Path-based routing

• It has more application awareness
• It supports WAF (web application firewall )
• It automatically redirects from HTTP to HTTPS
• It is more intelligent
• It supports CDN

7. What is the difference between Private and Public load balancers?

Azure load balancers can be Public load balancers or Private load balancers.

1. Public load balancers – A public load balancer permits traffic from the internet and distributes the load across multiple virtual machines.
2. Private load balancers – A public load balancer takes in requests from an internal Azure resource and distributes the load to other Azure internal resources.