In a world heavily dependent on cloud services, understanding and managing cloud network infrastructure is critical. In this book, you will gain both the knowledge and the practical skills to plan, design, implement, manage, and secure networks in the Azure cloud.

This book is also a comprehensive guide designed for those who are preparing for the Azure Network Engineer certification exam (AZ-700) and for those interested in mastering the Azure networking infrastructure. You will dive deep into concepts such as hybrid networking, routing, securing, and monitoring networks, as well as implementing private access to Azure services using native Azure capabilities.

Complete with hands-on labs, this book will take you beyond foundational knowledge to having a clear understanding of key design principles and implementation best practices. By the end of this book, you will be fully equipped and ready to architect and deploy highly scalable, performance-efficient networks in the Azure cloud.

This book is aimed at new and experienced IT professionals, network engineers, cloud administrators, and architects with interests in planning, designing, implementing, managing, and securing networks in the cloud.

Technical professionals who are preparing to take the Azure Network Engineer certification exam (AZ-700) will also benefit tremendously from reading this book.

Chapter 1, Azure Networking Fundamentals, introduces core concepts of Azure networking, such as virtual networks, public and private IP addressing, network segmentation using subnets, and routing concepts.

Chapter 2, Design and Implement Name Resolution, covers the four DNS implementation options for virtual networks in Azure and their use cases: Azure-provided name resolution, customer-managed DNS servers, Azure DNS private zones, and Azure DNS public zones.

Chapter 3, Design, Implement, and Manage VNet Routing, explains Azure routing, and you will create custom routes to control traffic flow. You will learn how to redirect traffic through network virtual appliances so you can inspect the traffic before it’s allowed through. You will also learn how to implement Azure Route Server – a fully managed service that simplifies dynamic routing between your network virtual appliance (NVA) and Azure Virtual Network.

Chapter 4, Design and Implement Cross-VNet Connectivity, covers the design and implementation of cross-VNet connectivity using VNet peering.

Chapter 5, Design and Implement Hybrid Network Connectivity with VPN Gateway, covers one of the diverse options to connect remote users and networks to networks in Azure offered by the Azure cloud – the Azure VPN Gateway service, which allows us to create a secure connection between remote networks and Azure VNets over the public internet.

Chapter 6, Design and Implement Hybrid Network Connectivity with an ExpressRoute Gateway, explores the implementation of ExpressRoute, another gateway service offered by Azure, as an alternative solution for remote network connectivity. ExpressRoute connections bypass the public internet, which means that traffic takes fewer hops and has fewer points of failure that could cause network disruption.

Chapter 7, Design and Implement an Azure Virtual WAN Architecture, explains how to design a scalable network architecture in Azure using the VWAN service.

Chapter 8, Design and Implement Network Security, looks into securing the Azure network perimeter and VNet workloads using native capabilities such as DDoS protection, Azure Firewall, and Azure Firewall Manager.

Chapter 9, Design and Implement Application Delivery Services, discusses the four main load balancing services in Azure (Load Balancer, Application Gateway, Front Door, and Traffic Manager) and aspects to consider when designing and implementing these services.

Chapter 10, Design and Implement Platform Service Connectivity, looks at the three main options to control network connections to services when deploying platform services outside of customer-managed virtual networks in Azure (a platform service firewall, a service endpoint, and a private endpoint). This chapter will provide you with a clear understanding of these three options and how to design and implement them.

Chapter 11, Monitoring Networks in Azure, covers network monitoring and diagnostics – essential components in maintaining the smooth functioning and optimal performance of a network infrastructure. In this chapter, we will cover the tools available in Azure Network Watcher that we can use to monitor and diagnose network services.

Foundation-level knowledge of the Azure cloud platform as well as a general knowledge of networking concepts are required to get the most out of this book.

If you are using the digital version of this book, we advise you to type the code yourself or access the code from the book’s GitHub repository (a link is available in the next section). Doing so will help you avoid any potential errors related to the copying and pasting of code.

You can download the example code files for this book from GitHub at https://github.com/PacktPublishing/Designing-and-Implementing-Microsoft-Azure-Networking-Solutions. If there’s an update to the code, it will be updated in the GitHub repository.

We also have other code bundles from our rich catalog of books and videos available at https://github.com/PacktPublishing/. Check them out!

There are a number of text conventions used throughout this book.

Code in text: Indicates code words in text, database table names, folder names, filenames, file extensions, pathnames, dummy URLs, user input, and Twitter handles. Here is an example: “In the search box at the top of the portal, enter Load balancer.”

Bold: Indicates a new term, an important word, or words that you see onscreen. For instance, words in menus or dialog boxes appear in bold. Here is an example: “Select System info from the Administration panel.”

Tips or important notes

Appear like this.

Feedback from our readers is always welcome.

General feedback: If you have questions about any aspect of this book, email us at customercare@packtpub.com and mention the book title in the subject of your message.

Errata: Although we have taken every care to ensure the accuracy of our content, mistakes do happen. If you have found a mistake in this book, we would be grateful if you would report this to us. Please visit www.packtpub.com/support/errata and fill in the form.

Piracy: If you come across any illegal copies of our works in any form on the internet, we would be grateful if you would provide us with the location address or website name. Please contact us at copyright@packt.com with a link to the material.

If you are interested in becoming an author: If there is a topic that you have expertise in and you are interested in either writing or contributing to a book, please visit authors.packtpub.com.

Once you’ve read Designing and Implementing Microsoft Azure Networking Solutions, we’d love to hear your thoughts! Please click here to go straight to the Amazon review page for this book and share your feedback.

Your review is important to us and the tech community and will help us make sure we’re delivering excellent quality content.

Thanks for purchasing this book!

Do you like to read on the go but are unable to carry your print books everywhere?

Is your eBook purchase not compatible with the device of your choice?

Don’t worry, now with every Packt book you get a DRM-free PDF version of that book at no cost.

Read anywhere, any place, on any device. Search, copy, and paste code from your favorite technical books directly into your application.

The perks don’t stop there, you can get exclusive access to discounts, newsletters, and great free content in your inbox daily

Follow these simple steps to get the benefits:

1. Scan the QR code or visit the link below

https://packt.link/free-ebook/9781803242033

2. Submit your proof of purchase
3. That’s it! We’ll send your free PDF and other benefits to your email directly