DRAG DROP -
You have an on-premises network that you plan to connect to Azure by using a site-to-site VPN.
In Azure, you have an Azure virtual network named VNet1 that uses an address space of 10.0.0.0/16. VNet1 contains a subnet named Subnet1 that uses an address space of 10.0.0.0/24.
You need to create a site-to-site VPN to Azure.
Which four actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
NOTE: More than one order of answer choices is correct. You will receive credit for any of the correct orders you select.
Select and Place:
Explanation
Sure, I'd be happy to explain the steps involved in creating a site-to-site VPN to Azure.
First, let's understand what a site-to-site VPN is. It is a connection between an on-premises network and an Azure virtual network that allows communication between the two networks. This connection is established using a VPN gateway in Azure and a VPN device on-premises.
Now, let's look at the four actions that need to be performed in sequence to create a site-to-site VPN to Azure:
Create a virtual network gateway: The first step is to create a virtual network gateway in Azure. This gateway will act as the endpoint for the VPN connection. To create the gateway, you need to specify the VPN type (in this case, site-to-site), the VPN gateway SKU (which determines the performance and features of the gateway), the virtual network it will be associated with (VNet1 in this case), and the public IP address that will be assigned to the gateway.
Configure the local network gateway: The next step is to configure the local network gateway. This is the on-premises VPN device that will connect to the Azure virtual network gateway. To configure it, you need to specify the IP address of the VPN device, the shared secret (a pre-shared key that is used to authenticate the VPN connection), and the on-premises address space (the IP address range of the on-premises network).
Create a connection: Once the virtual network gateway and the local network gateway are configured, you can create a connection between them. To create the connection, you need to specify the VPN type (site-to-site), the virtual network gateway, the local network gateway, and the connection name.
Configure the on-premises VPN device: Finally, you need to configure the on-premises VPN device to establish the VPN connection with the Azure virtual network gateway. The configuration steps will vary depending on the VPN device you are using, but generally, you need to specify the public IP address of the virtual network gateway, the shared secret, and the on-premises address space.
Once all four steps are completed, the site-to-site VPN should be established, and communication between the on-premises network and the Azure virtual network should be possible.