Home / Microsoft / AZ-700 / List of questions

Ask Question

Microsoft AZ-700 Practice Test - Questions Answers, Page 6

Add to Whishlist

List of questions

Question 51

Your company has offices in Montreal, Seattle, and Paris. The outbound traffic from each office originates from a specific public IP address. You create an Azure Front Door instance named FD1 that has Azure Web Application Firewall (WAF) enabled. You configure a WAF policy named Policy1 that has a rule named Rule1. Rule1 applies a rate limit of 100 requests for traffic that originates from the office in Montreal.

You need to apply a rate limit of 100 requests for traffic that originates from each office.

What should you do?

Modify the rate limit threshold of Rule1.

Create two additional associations.

Modify the conditions of Rule1.

Modify the rule type of Rule1.

Show Answer Comment (0)

Question 52

You have an Azure virtual network named Vnet1.

You need to ensure that the virtual machines in Vnet1 can access only the Azure SQL resources in the East US Azure region. The virtual machines must be prevented from accessing any Azure Storage resources. Which two outbound network security group (NSG) rules should you create? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.

a deny rule that has a source of VirtualNetwork and a destination of Sql

an allow rule that has the IP address range of Vnet1 as the source and destination of Sql.EastUS

a deny rule that has a source of VirtualNetwork and a destination of 168.63.129.0/24

a deny rule that has the IP address range of Vnet1 as the source and destination of Storage

Show Answer Comment (0)

Question 53

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. You have an Azure subscription that contains the following resources:

A virtual network named Vnet1

A subnet named Subnet1 in Vnet1

A virtual machine named VM1 that connects to Subnet1

Three storage accounts named storage1, storage2, and storage3

You need to ensure that VM1 can access storage1. VM1 must be prevented from accessing any other storage accounts. Solution: You configure the firewall on storage1 to only accept connections from Vnet1.

Does this meet the goal?

Yes

Show Answer Comment (0)

Question 54

A virtual network named Vnet1

A subnet named Subnet1 in Vnet1

A virtual machine named VM1 that connects to Subnet1

Three storage accounts named storage1, storage2, and storage3

You need to ensure that VM1 can access storage1. VM1 must be prevented from accessing any other storage accounts. Solution: You create a network security group (NSG) and associate the NSG to Subnet1.

Does this meet the goal?

Yes

Show Answer Comment (0)

Question 55

A virtual network named Vnet1

A subnet named Subnet1 in Vnet1

A virtual machine named VM1 that connects to Subnet1

Three storage accounts named storage1, storage2, and storage3

You need to ensure that VM1 can access storage1. VM1 must be prevented from accessing any other storage accounts. Solution: You create a network security group (NSG). You configure a service tag for Microsoft.Storage and link the tag to Subnet1. Does this meet the goal?

Yes

Show Answer Comment (0)

Question 56

You have an Azure virtual network named Vnet1 that has one subnet. Vnet1 is in the West Europe Azure region. You deploy an Azure App Service app named App1 to the West Europe region.

You need to provide App1 with access to the resources in Vnet1. The solution must minimize costs.

What should you do first?

Create a private link.

Create a new subnet.

Create a NAT gateway.

Create a gateway subnet and deploy a virtual network gateway.

Show Answer Comment (0)

Question 57

You have an Azure subscription that is linked to an Azure Active Directory (Azure AD) tenant named contoso.onmicrosoft.com. The subscription contains the following resources:

An Azure App Service app named App1

An Azure DNS zone named contoso.com

An Azure private DNS zone named private.contoso.com A virtual network named Vnet1 You create a private endpoint for App1. The record for the endpoint is registered automatically in Azure DNS. You need to provide a developer with the name that is registered in Azure DNS for the private endpoint. What should you provide?

Become a Premium Member for full access

Unlock Premium Member

Question 58

You have Azure App Service apps in the West US Azure region as shown in the following table.

Microsoft AZ-700 image Question 44 87900 10022024015514000000

You need to ensure that all the apps can access the resources in a virtual network named Vnet1 without forwarding traffic through the internet. How many integration subnets should you create?

Become a Premium Member for full access

Unlock Premium Member

Question 59

HOTSPOT

You need to recommend a configuration for the ExpressRoute connection from the Boston datacenter. The solution must meet the hybrid networking requirements and business requirements. What should you recommend? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Become a Premium Member for full access

Unlock Premium Member

Question 60

HOTSTOP

You need to connect an on-premises network and an Azure environment. The solution must use ExpressRoute and support failing over to a Site-to-Site VPN connection if there is an ExpressRoute failure. What should you configure? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Become a Premium Member for full access

Unlock Premium Member

Total 289 questions

4 5 6 7 8

Go to page: of 29

Question

Case Study

Question 51 (0)

Your company has offices in Montreal, Seattle, and Paris. The outbound traffic from each office originates from a specific public IP address. You create an Azure Front Door instance named FD1 that h

Question 52 (0)

You have an Azure virtual network named Vnet1. You need to ensure that the virtual machines in Vnet1 can access only the Azure SQL resources in the East US Azure region. The virtual machines must b

Question 53 (0)

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might

Question 54 (0)

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might

Question 55 (0)

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might

Question 56 (0)

You have an Azure virtual network named Vnet1 that has one subnet. Vnet1 is in the West Europe Azure region. You deploy an Azure App Service app named App1 to the West Europe region. You need to pr

Question 57 (0)

You have an Azure subscription that is linked to an Azure Active Directory (Azure AD) tenant named contoso.onmicrosoft.com. The subscription contains the following resources: An Azure App Service a

Question 58 (0)

You have Azure App Service apps in the West US Azure region as shown in the following table. You need to ensure that all the apps can access the resources in a virtual network named Vnet1 without

Question 59 (0)

HOTSPOT You need to recommend a configuration for the ExpressRoute connection from the Boston datacenter. The solution must meet the hybrid networking requirements and business requirements. What s

Question 60 (0)

HOTSTOP You need to connect an on-premises network and an Azure environment. The solution must use ExpressRoute and support failing over to a Site-to-Site VPN connection if there is an ExpressRoute

Related questions

You need to configure the default route in Vnet2 and Vnet3. The solution must meet the virtual networking requirements. What should you use to configure the default route?

HOTSPOT You have an Azure subscription that contains the route tables and routes shown in the following table. The subscription contains the subnets shown in the following table. The subscription contains the virtual machines shown in the following table. There is a Site-to-Site VPN connection to each local network gateway. For each of the following statements, select Yes of the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.

You need to connect Vnet2 and Vnet3. The solution must meet the virtual networking requirements and the business requirements. Which two actions should you include in the solution? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.

You need to configure the default route on Vnet2 and Vnet3. The solution must meet the virtual networking requirements. What should you use to configure the default route?

HOTSPOT In which NSGs can you use ASG1 and to which virtual machine network interfaces can you associate ASG1? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

HOTSPOT You need to meet the network security requirements for the NSG flow logs. Which type of resource do you need, and how many instances should you create? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

DRAG DROP You have an Azure subscription that contains an Azure VPN gateway named GW1. GW1 provides Point-to Site (P2S) VPN connectivity. Users connect to GW1 from a Windows 11 device by using an SSTP connection. You need to ensure that the P2S VPN connections support Microsoft Entra authentication. Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order. NOTE: More than one order of answer choices is correct. You will receive credit for and of the correct orders you select.

You have an Azure subscription that contains a user named Admin1 and a resource group named RG1. RG1 contains an Azure Network Watcher instance named NW1. You need to ensure that Admin1 can place a lock on NW1. The solution must use the principle of least privilege. Which role should you assign to Admin1?

DRAG DROP You need to implement outbound connectivity for VMScaleSet1. The solution must meet the virtual networking requirements and the business requirements. Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

OTSPOT You have an Azure subscription that contains the resources shown in the following table. You need to ensure that network traffic is routed over the Azure backbone network for the following scenarios: * Traffic from SQIMI1 to storage1 * Traffic from domain joined servers on VNet2 to storage1 The solution must minimize costs. What should you configure for each scenario? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

Export

with questions and answers will be exported as:

VPLUS file

PDF file (Demo 30 questions)

Highest scored 'comment-votes'

Your question list is being generated. We'll email you once it’s ready.

If you didn't receive an email within 5 minutes, you should submit a support request to Support@examgecko.com.