ExpertHard1 markMultiple Choice
AZ-305 · Question 39 · Domain 4.1: Compute Solutions
You are designing the network architecture for an Azure Kubernetes Service (AKS) cluster.
The cluster will host hundreds of microservices and scale dynamically. The enterprise network team has strictly limited the number of IP addresses available in the Azure Virtual Network. They can only allocate a /24 subnet (256 IPs) for the AKS cluster.
You need to ensure the cluster can scale to hundreds of pods without exhausting the VNet IP addresses. Pods must still be able to communicate with other Azure resources.
Which AKS network plugin should you recommend?
You are designing the network architecture for an Azure Kubernetes Service (AKS) cluster.
The cluster will host hundreds of microservices and scale dynamically. The enterprise network team has strictly limited the number of IP addresses available in the Azure Virtual Network. They can only allocate a /24 subnet (256 IPs) for the AKS cluster.
You need to ensure the cluster can scale to hundreds of pods without exhausting the VNet IP addresses. Pods must still be able to communicate with other Azure resources.
Which AKS network plugin should you recommend?
Answer options:
A.
Azure CNI
B.
Kubenet
C.
Azure CNI Overlay
D.
Flannel
How to approach this question
Identify the AKS networking model that conserves VNet IP addresses by putting pods on an internal overlay network.
Full Answer
B.Kubenet✓ Correct
Kubenet
In AKS, Kubenet networking conserves VNet IP addresses. With Kubenet, only the AKS nodes receive an IP address from the Azure VNet subnet. The pods receive IP addresses from a logically different address space (an overlay network). Traffic from pods to the VNet is NAT'd through the node's IP. Azure CNI, by contrast, assigns a VNet IP address to every single pod, which would quickly exhaust a small /24 subnet.
Common mistakes
Choosing Azure CNI. Azure CNI is often recommended for performance and advanced networking, but it is the wrong choice when VNet IP space is highly constrained.
Practice the full Azure Solutions Architect Expert AZ-305 Practice Exam 5
55 questions · hints · full answers · grading
More questions from this exam
Q01Contoso Ltd has 50 subscriptions across 3 business units. Each business unit manages its own IT o...EasyQ02You are designing a monitoring solution for a hybrid environment. The environment consists of 200...MediumQ03Your company uses Microsoft Sentinel integrated with a Log Analytics workspace. The workspace ing...HardQ04You are designing an application monitoring strategy using Application Insights. The application ...MediumQ05A highly regulated financial institution is migrating to Microsoft 365 and Azure. They currently ...Hard