Time
8 hours 33 minutes
Difficulty
Intermediate
CEU/CPE
9

Video Transcription

00:00
Hello, Siberians. Welcome to this lesson on Azure virtual network I p. Addressing this lesson is part of the THAAD Madu off the is at 500 Microsoft Azure security technologist costs
00:12
quick information on what will be covering in this lesson will start out with a brief discussion off. Private I. P addressing in azure virtual network would then follow that with are not approve discussion on public i p address in and finally out demonstrate out to create an assigned a public i p address to virtual Mission network interface.
00:32
Let's get into this
00:33
when were signed on a jury sauced resubmit, it automatically gets an I. P address from the subject range and died is something that, assigned dynamically
00:43
we can modify that assignment to be static from the azure platform, As you can see in the diagram that I have in the lower right corner. It's also important to note that they have some I P addresses that I reserved in every azure sub net, and those are the 1st 4 I p addresses on the last I p address off the submit.
01:03
So, for example, if I have a slash 21st up net,
01:06
the first assign able I P address would be the dot for 0.0.0 is the network address Did that one i p. Is there your get we address for that sub net that's too and got severe reserved on dot to 55 is also served.
01:21
Now let's look at public i p address in the nausea By the fault public I P addresses can be assigned on demand, and that can be a bit concerning from a security perspective, just because of the risk associate it would expose in veteran machines to the Internet without for port security checks.
01:38
Public I P addresses can either be I paid before or hyper V six or both.
01:42
We can create dynamic or static public I P addresses in Hajer for dynamic I P addresses. The value can change if the associated VM is de allocated.
01:53
The skew off a public I P address can either be basic or standard basic. I P addresses are not zone redundant, and what that means is that they can only be assigned boudin. It did a center in the region, while stand that I p addresses as own redundant, which means that it can be assigned across data centers in the region.
02:14
Now to our demonstration.
02:15
Yeah, the tasks that were going to be completing fast will create a dynamic public I p resource in Hajer would ever assigned the public i p resource to a VM network interface. And that will be the same Veum that would deployed Ellie and finally will verify what we've done by connecting to a VM from the Internet
02:35
using the public i p.
02:36
So the first task will create a dynamic public i p resource in hasher. Yes, a visual representation off what are between already have the VM that were created from the earlier lesson. I would just create a public i p resource that we're gonna be associated with it. So I am in the azure Pato.
02:54
If I go ahead and click on, create a resource and I said for public i p I can see public I p address here. Now go ahead and click on that and I'll click on create
03:06
Now you can see I can specify high people for hyper physics are both. I'll just leave that us i p Before now leave This Q has basic
03:14
now for the high p address name. I'll give that Dio win. VM
03:20
I fan p i p for public i p
03:23
for the i p address assignment, I'll leave that as dynamic
03:25
for the DNS name. I'll just copy the deal win VM name.
03:31
So that way I can also get so the high P addresses in this DNS name
03:37
for the results group outside lights the result school that I put all the previous resources
03:43
and for the location, the I p has to be in the same location as the resource that you're gonna be assigning it to. So I'll leave that in UK Self on our guide and click on Create.
03:54
So there you go the high PR dress finished creating. If I click on go to the results Now you can see the high p resource.
04:01
So in the nice task our be a sign in the public eye P results to a VM network interface
04:09
And here's a visual representation of what? RB Dean,
04:12
how go to the i p conflagration section off the veteran Mission Network interface on our associates the public I p address there.
04:20
So now I'm back in the azure Pato
04:23
what? I'll do is I'll go to veteran machines on the left hand side.
04:28
Now in the virtual mission console,
04:30
I can click on my virtual machine and I can click on Network In
04:34
and the networking section. I can see the network in the face off my VM. There's if I click on the network interface,
04:40
I have I p configurations. If I go ahead and click on that
04:44
and I have the I P Conflict Day, so I'll click on that option.
04:47
You can see where I can associate the public I p address, which this network interface. If I go ahead and click on associate
04:55
How click on I p address our selects the I. P address that I created earlier, which is the deal win VM hyphen. People are click on that
05:03
and I wired and click on Safe,
05:05
so the I P address was assigned successfully. And if I click on the notification option here,
05:11
you can see that it says it saved the natural interface.
05:15
So, in the final task in this demonstration,
05:17
have been connecting to the veteran machine using the public I p. Resource that would create a just now.
05:25
So he has official representation off what are between
05:28
since we're not having in this rock restrictions Dr Vetra Machine or to our sub net,
05:32
any Internet users should be able to reach my veteran machines using Rdp. Andi. They'll still be from there for authentication, But network access was to walk, and it gets the prompt, in which case there needs toe enter another indication. So let's go test their house
05:49
Some back in the azure portal if I go ahead and click on virtual machines
05:54
on If I click on my virtual machine Hey
05:57
on If I school a little bit to divide, you can see the public i p assignment states if a great and copy that
06:02
are being up much text up on my machine.
06:09
Andi, I have remotes text up client here. If I go ahead and enter that in
06:14
and I click can connect.
06:15
Now, I'm from thing to enter a user name and password. So great and enter that
06:28
on defy. Go ahead and click yesterday at
06:31
and there we go. So now I'm connecting to my veteran machine using the public I p results that we created just now.
06:41
So here's a summary of what we covered in this lesson.
06:44
We started out with a brief discussion off Private I. P addressing in agile virtual networks
06:49
would have followed with a discussion on public i. P addressing and finally would demonstrated our to create and assign a public i p address to a VM network interface in Hajer.
07:00
Thanks very much for watching this video and I'll see you in the next lesson.

Up Next

AZ-500: Microsoft Azure Security Technologies

In the AZ-500 Microsoft Azure Security Technologies training, students will learn the skills that are needed to pass the AZ-500 certification exam. All exam topics are covered as well as exam preparation strategies and hands-on practice.

Instructed By

Instructor Profile Image
David Okeyode
Cloud Security Architect
Instructor