AZ-800 Administering Windows Server Hybrid Core Infrastructure Exam
Eager to master hybrid server management? Discover how to administer Windows Server Hybrid Core Infrastructure on Azure, setting your path towards the Microsoft Certified: Azure Hybrid Infrastructure Administrator Associate certification!
Practice Test
Intermediate
Practice Test
IntermediateConfigure Hyper-V Switch
Implement and Secure Virtual Switch Types
Configuring Hyper-V virtual switches is essential for network connectivity and isolation for VMs. There are three types of virtual switches: external, internal, and private. Each type serves a different purpose in managing communication boundaries. The right choice ensures that VMs can talk to each other or be isolated as needed. This section guides you through securing these switches on Hyper-V hosts integrated with Azure.
An external switch connects VMs to both the physical network and other VMs. This allows VMs to reach servers, the Internet, and services on the same network. An internal switch lets VMs and the host communicate but does not allow external network access. Finally, a private switch isolates VMs, only letting them talk to each other on the same host. Choosing between these depends on your security and connectivity needs.
VLAN tagging enhances network segmentation by labeling traffic so that only devices on the same VLAN can communicate. To set up VLANs, you first assign each VLAN a unique ID and address space. Then, configure gateway and DNS settings within the same subnet. This helps keep traffic organized and secure. VLANs help prevent unwanted access between different groups of VMs.
You can strengthen switch security using Port Access Control Lists (ACLs), switch extensions, and adapter teaming. Port ACLs let you block or allow traffic based on rules you define. Switch extensions add features like filtering and traffic monitoring. Teaming combines multiple network adapters for higher bandwidth or failover. These features ensure your virtual network is both reliable and secure.
After setting up a switch, validation is key to maintaining a stable environment. Use the Get-HcsVirtualNetwork cmdlet to check network and subnet assignments. Test connectivity between VMs to confirm they can reach the correct networks. Review logs and monitoring tools to catch any issues early. Regular checks help maintain proper isolation and performance.
In hybrid setups, integrating Hyper-V switches with Azure virtual networks is vital. Use VPN gateways or ExpressRoute to connect on-premises hosts to Azure. Deploy Azure Firewall to manage inbound and outbound traffic rules. This setup ensures your VMs remain protected and can access cloud services seamlessly. A well-planned hybrid network can support business growth and disaster recovery.
Conclusion
In this section, you learned how to implement and secure Hyper-V switch types in a hybrid environment. We covered the three main switch types—external, internal, and private—and how each fits different scenarios. VLAN tagging, Port ACLs, switch extensions, and adapter teaming were explained to enhance segmentation and security. We also discussed validation steps and monitoring to keep networks reliable. Finally, integrating on-premises hosts with Azure virtual networks ensures a secure and efficient hybrid network.