Spring Sale Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: xmas50

Microsoft AZ-700 - Designing and Implementing Microsoft Azure Networking Solutions

Microsoft AZ-700 Premium Access     Download Demo    
Page: 2 / 6
Total 312 questions

You have a DNS domain named contoso.com that is hosted by a thud party domain name registrar.

You have an Azure subscription.

You need to ensure that all DNS queries for the contoso.com domain are resolved by using Azure DNS.

What should you create in the registrar, and what should you create in Azure? To answer, drag the appropriate options to the correct targets Each option may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.

NOTE: Each correct selection is worth one point.

You have an Azure Front Door instance named FD1 that is protected by using Azure Web Application Firewall (WAF).

FD1 uses a frontend host named app1.contoso.com to provide access to Azure web apps hosted in the East US Azure region and the West US Azure region.

You need to configure FD1 to block requests to app1.contoso.com from all countries other than the United States.

What should you include in the WAF policy?

A.

a frontend host association

B.

a managed rule set

C.

a custom rule that uses a rate limit rule

D.

a custom rule that uses a match rule

Your on-premises network contains the subnets shown in the following table.

The network contains a firewall named FW1 that uses a public IP address of 131.107.100.200.

You have an Azure subscription that contains the resources shown in the following table.

You plan to configure a Site-to-Site (S2S) VPN named VPN1 that will connect GW1 to FW1.

You need to configure LNG1 to support VPN1. The solution must meet the following requirements:

• Ensure that the resources on Subnet1 and Subnet2 can communicate with the resources on VNe1l.

• Minimize administrative effort.

How should you configure LNG1? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

You have an instance of Azure Web Application Firewall (WAF) on Azure Front Door.

You plan to create a WAF rule that will block high rates of requests from a single IP address.

You need to query Log Analytics to identify the optimal threshold for the rule.

Which table should you query in Log Analytics?

A.

AZFWThreatlnte1

B.

AzureDiagnostics

C.

SecurityDetection

D.

AGWFirewallLogs

You have an Azure virtual network named Vnet1 that contains two subnets named Subnet1 and Subnet2.

You have the NAT gateway shown in the NATgateway1 exhibit.

You have the virtual machine shown in the VM1 exhibit.

Subnet1 is configured as shown in the Subnet1 exhibit.

For each of the following statements, select Yes of the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

You have art Azure subscription that contains the resources shown in the following table.

You need to restrict access to storage1 and sqI1 by using service endpoints. The solution must meet the following requirements:

• Allow access from Subnet1 to SQIDB1

• Implement service endpoint policies to restrict access to supported resources.

• Allow access from Subnet1 to storage1 and the read-only replica of storage1 in the paired Azure region.

What is the minimum number of service endpoints and service endpoint policies you should create? To answer, select the appropriate options m the answer area.

NOTE: Each correct selection is worth one point.

You have an on-premises network that includes the sites shown in the following table.

Each site is connected to the Internet by a firewall. All sites are connected to an SD-WAN. Each site is configured to propagate routes by using BGP.

You have an Azure subscription that includes a virtual network named Vnet1 that contains a Virtual Network Gateway named Gateway 1.

You create a local network gateway with the configuration shown in the gateway exhibit (Click the Gateway tab.)

You create a Site-to-Site (S2S) connection with the configuration shown in connection exhibit. (Click the Connection tab)

For each of the following statements, select Yes if the statement is true Otherwise, select No.

NOTE: Each correct selection is worth one point.

You have an Azure subscription that contains four virtual networks named VNet1, VNet2, VNet3, and VNet4.

You plan to deploy a hub and spoke topology by using virtual network peering.

You need to configure VNet1 as the hub network. The solution must meet the following requirements:

* Support transitive routing between spokes.

* Maximize network throughput.

What should you include in the solution?

A.

Azure Route Server

B.

Azure VPN Gateway

C.

Azure Firewall

D.

Azure Private Link

You have an Azure subscription that contains the public IPv4 addresses shown in the following table.

You plan to create a load balancer named LB1 that will have the following settings:

* Name: LB1

* Location: West US

* Type: Public

* SKU: Standard

Which public IPv4 addresses can be used by LB1?

A.

IP1 and IP3 only

B.

IP3 only

C.

IP3 and IP5 only

D.

IP2only

E.

IP1, IP2. IP3. IP4. and IP5

F.

IP1, IP3, IP4, and 1P5 only

You have an on-premises VPN appliance named GW1.

You have an Azure subscription that contains an Azure VPN gateway named VPNGW1. VPNGW1 connects to GW1.

You need to modify the IKEv2 encryption algorithm used by VPNGW1 and GW1.

Which PowerShell cmdlet should you run? To answer, select the appropriate options in the answer area.

NOTE Each correct selection is worth one point.