You have an Azure subscription named Subscription1 that contains an Azure virtual network named VNet1. VNet1 connects to your on-premises network by using
Azure ExpressRoute.
You need to connect VNet1 to the on-premises network by using a site-to-site VPN. The solution must minimize cost.
Which three actions should you perform? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.
Click on the arrows to vote for the correct answer
A. B. C. D. E.CDE
https://docs.microsoft.com/en-za/archive/blogs/canitpro/step-by-step-configuring-a-site-to-site-vpn-gateway-between-azure-and-on-premiseTo connect an Azure virtual network to an on-premises network using a site-to-site VPN, the following three actions should be performed:
Detailed explanation:
Create a gateway subnet: A gateway subnet is a subnet in a virtual network that contains the IP addresses used by the VPN gateway services. To create a gateway subnet in Azure, follow these steps: a. Go to the Azure portal and select the virtual network to which you want to add the gateway subnet. b. Click on the "Subnets" option in the left-hand menu. c. Click on the "+Gateway subnet" button. d. Enter a name for the subnet, and choose an appropriate address range.
Create a VPN gateway that uses the VpnGw1 SKU: A VPN gateway is a specific type of virtual network gateway that is used to send encrypted traffic between an Azure virtual network and an on-premises location over the public internet. To create a VPN gateway in Azure, follow these steps: a. Go to the Azure portal and select the virtual network to which you want to add the VPN gateway. b. Click on the "Virtual network gateways" option in the left-hand menu. c. Click on the "+Add" button. d. Enter a name for the VPN gateway, and choose the VpnGw1 SKU. e. Choose an appropriate subnet for the gateway, and select the appropriate VPN type.
Create a connection: A connection is used to link the VPN gateway to the on-premises VPN device. To create a connection in Azure, follow these steps: a. Go to the Azure portal and select the virtual network gateway you created in step 2. b. Click on the "Connections" option in the left-hand menu. c. Click on the "+Add" button. d. Enter a name for the connection, and select the appropriate connection type. e. Enter the IP address of the on-premises VPN device, and configure the necessary settings.
Optional step:
Create a local site VPN gateway: If you want to use a site-to-site VPN to connect your on-premises network to Azure, you will need to configure a local site VPN gateway. This is a VPN device that is located on-premises and connects to the Azure VPN gateway. To create a local site VPN gateway, follow these steps: a. Install and configure a supported VPN device on-premises. b. Configure the necessary settings on the VPN device, such as the IP address of the Azure VPN gateway. c. Create a local network gateway in Azure, and configure the necessary settings, such as the IP address of the on-premises VPN device.
Create a VPN gateway that uses the Basic SKU: This is an alternative solution for step 2 if you want to minimize costs. The Basic SKU is a lower-cost option for VPN gateways, but it has some limitations compared to the VpnGw1 SKU. To create a VPN gateway that uses the Basic SKU, follow the same steps as for the VpnGw1 SKU, but choose the Basic SKU instead.