Introduction
Welcome to this interactive skills validation experience. Completing this module helps prepare you for the Configure secure access to your workloads using Azure virtual networking assessment.
In this module, you practice configuring secure access to workloads using Azure virtual networking. The lab combines both learning and hands-on practice. The skills validated include creating and configuring virtual networks, network security groups, and Firewalls. Also, configuring routing and DNS to improve the security posture of the network.
Note
This is a guided project module where you complete an end-to-end project by following step-by-step instructions.
Requirements
Your organization has a web application hosted on Azure. As the Azure Administrator your help is needed to ensure that these workloads are being accessed securely. After your discovery you have identified the following requirements:
- Provide network isolation and segmentation for the web application.
- Control the network traffic to and from the web application.
- Protect the web application from malicious traffic and block unauthorized access.
- Route traffic to the firewall.
- Record and resolve domain names internally.
In this guided project, you leverage Azure networking services to meet these requirements.
Skilling areas
You've used the Azure documentation to review your networking options. The project requires configuring virtual networks, network security groups, and Firewalls. Also, configuring routing and DNS to improve the security posture of the network. For each area listed, the subtasks you need to become familiar with have been identified.
| Skilling area | Skilling task |
|---|---|
| Create and configure virtual networks |
|
| Create and configure network security groups (NSGs) |
|
| Create and configure Azure Firewall |
|
| Configure network routing |
|
| Create DNS zones and configure DNS settings |
|