Learn
Connect
Blog
Resource hub
Featured resource
2026 Tech Forecast
2026 Tech Forecast

1,500+ tech insiders, business leaders, and Pluralsight Authors share their predictions on what’s shifting fastest and how to stay ahead.

Download the forecast
  • Lab
    • Libraries: If you want this lab, consider one of these libraries.
    • Cloud
Azure icon
Labs

Implementing Secure VNet Peering Between Departmental Networks

As the lead network administrator for a growing enterprise, you will establish secure, private network communication between two departmental Azure Virtual Networks. Starting with a pre-deployed HR environment containing an Azure SQL Server, you will create and peer a Finance Virtual Network to bridge the two departments. You will then implement advanced security controls using Network Security Groups (NSGs) to permit only specific SQL traffic while explicitly denying all other inter-departmental communication. Finally, you will configure a custom route table to prevent sensitive workloads from accessing the public internet. By the end of this lab, you will have gained practical experience in the multi-layered networking skills required to connect and secure private resources in a peered Azure environment.

Get started Contact sales
Azure icon
Lab platform
Lab Info
Level
Intermediate
Last updated
May 29, 2026
Duration
45m

Contact sales

By clicking submit, you agree to our Privacy Policy and Terms of Use, and consent to receive marketing emails from Pluralsight.
Table of Contents

  1. Challenge

    Create the Finance VNet and establish VNet peering with the HR environment

    Deploy a Finance Virtual Network with a non-overlapping address space and configure a bidirectional peering link to the pre-existing HR VNet to establish a private, low-latency network route between the two departmental environments.

  2. Challenge

    Restrict inter-VNet traffic using Network Security Groups

    Configure inbound and outbound NSG rules on both departmental subnets to explicitly permit SQL traffic on port 1433 while denying all other cross-VNet communication, enforcing the principle of least privilege across the peered connection.

  3. Challenge

    Control HR subnet routing to block internet egress

    Create and associate a custom route table with the HR subnet that overrides Azure's default internet system route, dropping all internet-bound traffic at the routing layer while preserving internal SQL connectivity across the peered VNets.

About the author
Pluralsight Skills - Labs - Pluralsight
Pluralsight Skills

Pluralsight Skills gives leaders confidence they have the skills needed to execute technology strategy. Technology teams can benchmark expertise across roles, speed up release cycles and build reliable, secure products. By leveraging our expert content, skill assessments and one-of-a-kind analytics, keep up with the pace of change, put the right people on the right projects and boost productivity. It's the most effective path to developing tech skills at scale.

Real skill practice before real-world application

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.

Learn by doing

Engage hands-on with the tools and technologies you’re learning. You pick the skill, we provide the credentials and environment.

Follow your guide

All labs have detailed instructions and objectives, guiding you through the learning process and ensuring you understand every step.

Turn time into mastery

On average, you retain 75% more of your learning if you take time to practice. Hands-on labs set you up for success to make those skills stick.

Get started with Pluralsight

View individual plans View team plans
Related Pages