How well do you know Azure Global VNET Peering Question Title * 1. When you connect two regions via Global VNET Peering, does the traffic flow through Azure backbone and not via public internet ? Yes No OK Question Title * 2. Are there any inbound and outbound transfer cost when you use Global VNET peering. Yes No OK Question Title * 3. You can connect VNET from two different subscriptions. True False OK Question Title * 4. Global VNET peering can provide a transitive relationship across peered network. True False OK Question Title * 5. Is it possible to peer Virtual networks created through the classic deployment model. Its not possible to connect VNET from classic deployment model. Its possible to connect VNET from classic deployment model. OK Question Title * 6. Do you need any special RBAC roles to create peering No need , anyone can do it as long they have roles on the Virtual Machine they can configure Global VNET Peering. The users need very special permission called Global Network Admin role. The user should have Network Contributor role since its a very privileged operation. OK Question Title * 7. You are the networking administrator and configured Global VNET peering. Everything was working fine and all of a sudden customers are complaining they are getting TCP connectivity issues from a virtual machine to a given endpoint. What will be the most appropriate and effective tool of choice to check connectivity issues. what will you recommend. Recommend my customer to deploy 3rd party logging and monitoring tool, dump all the logs and use tools like wire shark to troubleshoot the issue. Recommend my customer to Activity log to look for failures and trouble shoot the issue. Recommend my customer to Deploy open source tools like Cap Analysis , Wire shark , in conjunction with Network watcher , so you OK Question Title * 8. Your customer is getting external contractors to monitor data from network watcher. The customer is security conscious and want to ensure the access is full managed and controlled. What will your suggestion to your customer to restrict access to the Network watcher. Build custom dashboard using powerBI to display the data from Network watcher and provide access control the report. Implement the RBAC controls from network watcher. Azure dosent provide any option to restrict access to network watcher data. The customer has to ensure the external contractor dont access network watcher without proper physical authorization. OK Question Title * 9. You customer is super excited about Global VNET peering and wants to adopt them right away. They have two subscriptions residing in two regions and each of the subscription have the VNET. These VNET share the same IP address space. What will your first response / feedback to your customer. Lets deploy Global VNET Peering , there are no issue with sharing the same IP address space. You will advise the customer , basic requirement for VNET - Global peering is non-overlapping address space. They cannot connect VNET with overlapping address spaces. You will advise the customer to create another VNET without overlapping address space and redeploy the workloads and then draw out a plan on the migration and timelines. OK Question Title * 10. Your customer has two different active directories and want to connect VNET residing in 2 different regions via Global VNET Peering. Based on what you know about Global VNET Peering , what will you be your advise to move forward. Advise the customer its not possible to connect to VNET from 2 different active directory. Advise the customer its not possible to connect to VNET from 2 different active directory. But this seems to be most requested feature , you advise the customer to include that requested in User Voice. Advise the customer its not possible to connect to VNET from 2 different active directory. But thisseems to be most requested feature , you head to user voice and find there is an existing request. You upvote . Then advise the customer to use VPN Gateway to connect the VNET. OK Question Title * 11. Your customer has one virtual network created through the ARM model and another model created through the classic deployment model. Is it possible to connect them using Global VNET Peering ?. Yes , its possible to connect the VNETs No its not possible to connect the VNETs , because Global VNET peering supports VNET created throw ARM. VNET Peering support the following model of peering (Classic-VNET<--> Classic-VNET) (ARM VNET<--> ARM VNET). In others words you cannot mix and match VNET from different deployment models. OK Question Title * 12. Let's say you have an Azure Bastion host configured in one virtual network (VNet), can it be used to connect to VMs deployed in a peered VNet without deploying an additional Bastion host. Yes its possible to connect No its not possible to connect. OK Question Title * 13. What is Service chaining It enables you to direct traffic from one virtual network to a virtual appliance or gateway in a peered network through user-defined routes. Its the process of connecting two distinct VNET that's residing in different subscriptions. OK THANKS FOR COMPLETING THE QUIZ