Moniter and Maintain Azure Resources

Question 1

• compare latencies
  -monitor, diagnose, connectivity-related metrics
• cross-region, cross-workspace connectivity monitoring

Answer 1

Azure Network Watcher Connection Monitor

Question 2

• data flow between NSGs
• network traffic allowed/denied in VNet

Answer 2

Azure Network Watcher NSG diagnostics

Question 3

• VNet gateways and their connections
• Azure portal, PowerShell, CLI, REST API
• health of gateway or connection

Answer 3

Azure Network Watcher VPN Troubleshoot

Question 4

• network connectivity at a packet level
• which packets are allowed/denied to/from VM
• direction, protocol, local/remote IP, local/remove port
  5 tuple packet parameter-based verification method

Answer 4

Azure Network Watcher IP Flow Verify

Question 5

• calculates the filters that affect a VM in a RG
• analyzes results of Test-AzNetworkWatcher IPFlow

Answer 5

Get-AzEffectiveNetworkSecurityGroup

Question 6

• routing issues

Answer 6

Test-AzNetworkWatcherNextHop

Question 7

• tests oubound connection from source VM/port to destination IP/port using TCP or UDP
• returns NSG that contains filerting rule that blocked

Answer 7

Test-AzNetworkWatcherIPFlow

Question 8

• outbound connectivity between VM and destination

Answer 8

Test-AzNetworkWatcherConnectivity

Question 9

• shows details about NSG

Answer 9

Get-AzNetworkSecurityGroup

Question 10

check for TCP connection between source/destination VM
- specify FQDN, URI, or IP

Answer 10

Connection troubleshoot

Question 11

See how packets travel from VM to destination

Answer 11

Next hop

Question 12

• shows all the NSG rules applied to network interface

Answer 12

Effective security rules

Question 13

• SIEM
• SOAR
• used to collect threat data, investigate, and respond to threats using AI

Answer 13

Microsoft Sentinel

Question 14

• run queries against a large amount of logs collected from various sources
• Kusto queries

Answer 14

Azure Log Analytics

Question 15

• comphrehensive solution
• collecting, analyzing, acting on telemetry
• feed various metrics and logs to storage accounts
• query and visualize logs
• build alerts to take actions

Answer 15

Azure Monitor

Question 16

• APM (Application Performance Monitoring)
• telemetry data
• not comprehensive
• no alerting

Answer 16

Azure Application Insights

Question 17

Dashboard on top of Azure Storage metrics and logs
Examine transaction volume and used capacity

Answer 17

Storage Insights

Question 18

Simplifies deploying, scaling, managing, and configuring a SAN

Answer 18

Azure Elastic SAN

Answer 19

Premium block blob storage

Question 20

Standard storage account type for: blobs, file shares, queues, and tables

Answer 20

Standard GPv2 storage

Question 21

Offeres fully managed file shares accessible via SMB protocol, NFS protocol, and Azure Files REST API

Answer 21

Azure Files

Question 22

Users premium block blob storage
Azure Site Recovery supports churn (data change rate) up to 100 MV/s per VM
Achieve better recovery point objective (RPO)

Answer 22

Azure Site Recovery High Churn

Question 23

Monitor performance between different points in netowrk
1. Performance Monitor - connectivity
2. Service Connectivity Monitor - connectivity with network services
3. ExpressRoute Monitor - end-to-end connectivity over Azure EpxressRoute

Answer 23

Azure Network Performance Monitor

Question 24

Does NOT support ‘Premium’ storage account

Answer 24

boot diagnostics

Question 25

1. NSGs in target region 2. Recovery Plan 3. Customize Plan, add step for attaching public IP 4. Traffic Manager profile

Answer 25

Azure Site Recovery

Question 26

Resource-level diagnostics logs monitor events that happen inside the resource For IoT Hub, has event DeviceTelemetry

Answer 26

Azure Monitor resource diagnostics logs on IoT Hub

Question 27

Provides info about the high-level health of resource

Answer 27

Azure Resource Health

Question 28

Provides info about application performance while application is running

Answer 28

Azure Application Insights

Question 29

Provides info about actions performed on resources in subscription while using Resource Manager

Answer 29

Azure activity logs

Question 30

1. Start the file recovery process and select the recovery point 2. Download/execute PowerShell script to browse/recover files 3. Copy file from ounted volumn to VM 4. Unmount the volumes

Answer 30

Steps to restore Vm from Azure Recovery Services Vault

Question 31

Send to Log Analytics

Answer 31

Azure Recovery Services vault diagnostics

Question 32

Stored in Recovery Services Vault Snapshot Resources need to be in same region as RSV Can NOT backup Azure Blob containers or Azure SQL database

Answer 32

Azure Backup

Question 33

Root "A" record - points to domain Root "TXT" record - verification "CNAME" record - subdomain

Answer 33

DNS records

Question 34

– Create a Recovery Services vault – Define a backup policy – Apply the backup policy to protect multiple virtual machines

Answer 34

Steps to backup an Azure VM

Question 35

Schedule for how often/when recovery points are taken Retention range for the recovery points

Answer 35

Backup policy

Question 36

Back up on-premises physical servers, VMs, and apps running on them

Answer 36

Microsoft Azure Backup Server (MABS)