AZ-700 Exam Question 86
Hotspot Question
You have an Azure subscription that contains a single virtual network and a virtual network gateway.
You need to ensure that administrators can use Point-to-Site (P2S) VPN connections to access resources in the virtual network.
The connections must be authenticated by Azure Active Directory (Azure AD).
What should you configure? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
You have an Azure subscription that contains a single virtual network and a virtual network gateway.
You need to ensure that administrators can use Point-to-Site (P2S) VPN connections to access resources in the virtual network.
The connections must be authenticated by Azure Active Directory (Azure AD).
What should you configure? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
AZ-700 Exam Question 87
You have an Azure subscription.
You plan to deploy Azure Firewall Premium, enable all the Premium features, and configure both network and application rules.
Which type of rule will the firewall process first?
You plan to deploy Azure Firewall Premium, enable all the Premium features, and configure both network and application rules.
Which type of rule will the firewall process first?
AZ-700 Exam Question 88
Hotspot Question
You configure a route table named RT1 that has the routes shown in the following table.
You have an Azure virtual network named Vnet1 that has the subnets shown in the following table.
You have the resources shown in the following table.
Vnet1 connects to an ExpressRoute circuit. The on-premises router advertises the following routes:
- 0.0.0.0/0
- 10.0.0.0/16
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
You configure a route table named RT1 that has the routes shown in the following table.
You have an Azure virtual network named Vnet1 that has the subnets shown in the following table.
You have the resources shown in the following table.
Vnet1 connects to an ExpressRoute circuit. The on-premises router advertises the following routes:
- 0.0.0.0/0
- 10.0.0.0/16
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
AZ-700 Exam Question 89
You have an Azure subscription that contains the resources shown in the following table.
NSG1 is associated to the NIC of VM1 and contains the rules shown in the following table.
You collect NSG flow logs for five minutes for the following activities:
- Two RDP sessions from VM1 to VM2, each initiated from a different TCP port
- Three SSH sessions from VM2 to VM1, each initiated from a different
TCP port
You analyze the logs by using Traffic Analytics in Azure Network Watcher.
How many aggregated flow entries will Traffic Analytics identify?
NSG1 is associated to the NIC of VM1 and contains the rules shown in the following table.
You collect NSG flow logs for five minutes for the following activities:
- Two RDP sessions from VM1 to VM2, each initiated from a different TCP port
- Three SSH sessions from VM2 to VM1, each initiated from a different
TCP port
You analyze the logs by using Traffic Analytics in Azure Network Watcher.
How many aggregated flow entries will Traffic Analytics identify?
AZ-700 Exam Question 90
You have the resources shown in the following table.
You need to protect the virtual machines by using Azure DDoS Network Protection plans.
What is the minimum number of DDoS Network Protection plans you should deploy?
You need to protect the virtual machines by using Azure DDoS Network Protection plans.
What is the minimum number of DDoS Network Protection plans you should deploy?