Question No. 1

SIMULATION

Task 8

You need to ensure that the storage34280945 storage account will only accept connections from hosts on VNET1

ASee the Explanation below for step by step instructions

Show Answer

Correct Answer: A

Here are the steps and explanations for ensuring that the storage34280945 storage account will only accept connections from hosts on VNET1:

To restrict network access to your storage account, you need to configure the Azure Storage firewall and virtual network settings for your storage account.You can do this in the Azure portal by selecting your storage account and then selectingNetworkingunderSettings1.

On theNetworkingpage, selectFirewalls and virtual networks, and then selectSelected networksunderAllow access from1. This will block all access to your storage account except from the networks or resources that you specify.

UnderVirtual networks, select+ Add existing virtual network.Then select VNET1 from the list of virtual networks and select the subnet that contains the hosts that you want to allow access to your storage account1.This will enable a service endpoint for Storage in the subnet and configure a virtual network rule for that subnet through the Azure storage firewall2.

SelectAddto add the virtual network and subnet to your storage account1.

SelectSaveto apply your changes1.

Question No. 2

Your company has a single on-premises datacenter in New York. The East US Azure region has a peering location in New York.

The company only has Azure resources in the East US region.

You need to implement ExpressRoute to support up to 1 Gbps. You must use only ExpressRoute Unlimited data plans. The solution must minimize costs.

Which type of ExpressRoute circuits should you create?

AExpressRoute Local

BExpressRoute Direct

CExpressRoute Premium

DExpressRoute Standard

Show Answer

Correct Answer: A

https://azure.microsoft.com/en-us/pricing/details/expressroute/

Question No. 3

You have an Azure subscription that contains a virtual network named VNet1. VNet1 contains a subnet named Subnet1.

You plan to add a private endpoint to Subnet1.

You need to ensure that you can route traffic between the private endpoint and the Azure Private Link service by using a user-defined route.

What should you do first on Subnet1?

AEnable network policy.

BEnable delegation.

CCreate a service endpoint.

DProvision a Standard Azure load balancer.

Show Answer

Correct Answer: B

Question No. 4

You have an Azure subscription that contains the resources shown in the following table.

You need to configure a solution to meet the following requirements;

* App1 must be assigned a private endpoint

* Access to App1 from the internet must be routed via FD1.

What should you configure on FD1?

Aa rule that has the route configuration override action

Ba route that redirects traffic

Can origin that enables the Azure Private Link service

Da security policy that redirects traffic

Show Answer

Correct Answer: C

Question No. 5

What should you implement to meet the virtual network requirements for the virtual machines that connect to Vnet4 and Vnet5?

Aa private endpoint

Ba virtual network peering

Ca private link service

Da routing table

Ea service endpoint

Show Answer

Correct Answer: B

There is no virtual network peering between VM4's VNet (VNet3) and VM5's VNet (VNet4). To enable the VMs to communicate over the Microsoft backbone network a VNet peering is required between VNet3 and VNet4.

Free Microsoft AZ-700 Exam Actual Questions

The questions for AZ-700 were last updated On Dec 18, 2024