_edited.png){kind=small}
What This Bootcamp Covers
Become job-ready in Azure networking and insfrastructure. Learn hub-and-spoke architecture, Vnets, routing, NSGs, UDRs, VPNs, and secure connectivity. Build a complete cloud networking environment based onn real enterprise patterns.
Windows Server Domain Controller
Active Directory Structure (GPOs, OUs)
FortiGate Policies + VPN
Portfolio + Resume + Interview Prep
Job Roles You Can Land
Azure Network Engineer (Junior)
Cloud Infrastructure Administrator
Azure Support Engineer
Network Technician (Cloud)
MSP Cloud Engineer
Azure Virtual Network Specialist
Infrastructure Support Analyst
Junior Security & Network Engineer
Real-World Architecture
The company you will build infrastructure for
SkyLink Mobility Services: Secure multi-region network + VPN + controlled traffic flow
Regions: South Africa, UK, Singapore
Employees: 500 staff
Systems: ERP system, public web apps, internal VMs
Compliance: POPIA, GDPR
Infrastructure
-
Azure hub (firewall)
-
spoke VNets for apps + data
Business Pain Points
-
Scattered network with no standard architecture
-
No segmentation between apps/data
-
No central traffic control
-
No secure remote access
-
No network governance or monitoring
Your Hands-On Security Engineering Project
You will build a full Azure Hub-and-Spoke Network that:
✔ Creates proper VNets and subnets with naming standards
✔ Deploys a central Hub VNet (gateway, firewall-ready)
✔ Builds two Spoke VNets for app and data workloads
✔ Configures VNet Peering (hub ↔ spoke)
✔ Creates NSGs and assigns them to subnets
✔ Configures custom routes (UDRs) for secure traffic paths
✔ Deploys a Point-to-Site or Site-to-Site VPN for access
✔ Connects VMs, App Services, and Storage securely
✔ Tests connectivity using Azure Network Watcher tools
✔ Documents the design using diagrams
This mirrors the networking layer of real production Azure systems.
Why This Matters
After completing the bootcamp, students can confidently say:
“I designed and deployed a full hub-and-spoke Azure network with VNets, routing, NSGs, and VPN connectivity. I built custom routes, configured traffic flow, deployed app and data subnets, and implemented secure connectivity using Azure native tools.”
Your Workflow Roadmap
01
Azure Networking Foundations
-
Design network address ranges (CIDR planning)
-
Create Hub VNet + subnets (gateway, firewall, shared services)
-
Create Spoke VNets + app/data subnets
02
VNet Peering & Traffic Flow
-
Peer Hub ↔ Spoke networks
-
Configure “use remote gateways”
-
Test hub routing and isolation
-
Validate connectivity using Network Watcher
03
Network Security Groups
-
Create NSGs for app, data, and public layers
-
Assign NSGs to subnets
-
Build inbound/outbound rules
-
Evaluate traffic using NSG Flow Logs
04
Route Tables (User-Defined Routes)
-
Create UDRs for forced tunnelling
-
Apply routes to spoke subnets
-
Simulate Azure Firewall/FortiGate routing
-
Build an enterprise routing table
05
VPN Connectivity
-
Deploy a VPN Gateway
-
Configure Point-to-Site VPN with certificates or Entra ID
-
Validate VPN routes
-
Test on-prem–to–Azure simulation
06
Connecting Azure Services
-
Deploy VMs in app and data subnets
-
Secure Storage Account using private networking
-
Connect App Service to VNets
-
Use Private Endpoints where applicable
07
Monitoring, Diagnostics & Governance
-
Configure Network Watcher
-
Use Connection Troubleshoot / IP Flow Verify
-
Build traffic analytics dashboards
-
Document your full network design
Why This Bootcamp Is the Real Deal:
✔ Teaches the core networking skills needed for AZ-104, AZ-700, and real cloud jobs
✔ Builds a production-style Azure network layer
✔ Covers the exact tasks MSPs and cloud teams assign
✔ Produces a portfolio-ready architecture
✔ Gives students troubleshooting and design confidence