Skip to content
BankyBluePrints.com

Additional Notes (AZ-900)

Practice links

  • Microsoft Learn knowledge checks: compute, storage, networking, identity, governance, monitoring, security
  • Community practice tests: marczak.io episodes 1โ€“39

Networking quick hits

  • VPN Gateway: Connect on-prem networks/users to Azure VNets securely over IPsec
  • Virtual Network (VNet): Private network space in Azure; subnets, NSGs, peering
  • Load Balancer: Layer-4 (TCP/UDP) load balancing for internal or external traffic
  • Application Gateway: Layer-7 HTTP(S) load balancing with Web Application Firewall (WAF)

Compare: VPN Gateway vs. VNet

  • VPN Gateway: Connectivity into Azure (site-to-site, point-to-site, VNet-to-VNet)
  • VNet: The network itself (address space, segmentation, isolation)

Compare: Load Balancer vs. Application Gateway

  • Load Balancer: Non-HTTP(S) L4, ultra-low latency, supports VM/VMSS, inbound/outbound SNAT
  • Application Gateway: HTTP(S) L7, path/host routing, SSL offload, WAF, session affinity

Tip: Many architectures use both, e.g., App Gateway (L7) in front and Internal Load Balancer (L4) behind.