| Exam Code | AZ-700 |
| Exam Name | Designing and Implementing Microsoft Azure Networking Solutions |
| Questions | 129 Questions Answers With Explanation |
| Update Date | May 10,2024 |
| Price |
Was : |
Prepare Yourself Expertly for AZ-700 Exam:
Our most skilled and experienced professionals are providing updated and accurate study material in PDF form to our customers. The material accumulators make sure that our students successfully secure at least more than 90% marks in the Microsoft AZ-700 exam. Our team of professionals is always working very keenly to keep the material updated. Hence, they communicate to the students quickly if there is change in the AZ-700 dumps file. You and your money both are very valuable for us so we never take it lightly and have made the attempt to provide you the best work in your hands. In fact, there is not a 1% chance to ruin it.
You can access our agents anytime for your guidance 24/7. Our agent will provide you information you need, you can ask them any questions you have. We are here to provide you with a complete study material file you need to pass your AZ-700 exam with remarkable marks.
Our experts are working hard to provide our customers with accurate material for their Microsoft AZ-700 exam. If you want to meet a sweeping success in your exam you must sign up for the complete preparation at Pass4surexams and we will provide you with such genuine material that will help you succeed with distinction. Our provided material is as real as you are studying the real exam questions and answers. Our experts are working hard for our customers. So that they can easily pass their exam in their first attempt without any trouble.
Our team updates the Microsoft AZ-700 questions answers frequently and if there is a change, we instantly contact our customers and provide them updated study material for the exam preparation.
We offer our students real exam questions with 100% passing guarantee, so that they can easily pass their Microsoft AZ-700 exam in the first attempt. Our AZ-700 dumps PDF have been carved by the experienced experts exactly on the model of real exam question answers in which you are going to appear to get your certification.
You have an Azure Virtual Desktop deployment that has 500 session hosts.All outbound traffic to the internet uses a NAT gateway. During peak business hours, some users report that they cannot access internet resources. In Azure Monitor, you discover many failed SNAT connections. You need to increase the available SNAT connections. What should you do?
A. Add a public IP address.
B. Bind the NAT gateway to another subnet.
C. Deploy Azure Standard Load Balancer that has outbound rules.
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.You have two Azure virtual networks named Vnet1 and Vnet2.You have a Windows 10 device named Client1 that connects to Vnet1 by using a Point-toSite (P2S) IKEv2 VPN. You implement virtual network peering between Vnet1 and Vnet2. Vnet1 allows gateway transit. Vnet2 can use the remote gateway. You discover that Client1 cannot communicate with Vnet2.You need to ensure that Client1 can communicate with Vnet2. Solution: You download and reinstall the VPN client configuration. Does this meet the goal?
A. Yes
B. No
You need to use Traffic Analytics to monitor the usage of applications deployed to Azure virtual machines.Which Azure Network Watcher feature should you implement first?
A. Connection monitor
B. Packet capture
C. NSG flow logs
D. IP flow verify
You have an Azure application gateway named AppGW1 that balances requests to a web app named App1.You need to modify the server variables in the response header of App1.What should you configure on AppGW1?
A. HTTP settings
B. rewrites
C. rules
D. listeners
You have an Azure virtual network that contains a subnet named Subnet1. Subnet1 is associated to a network security group (NSG) named NSG1. NSG1 blocks all outbound traffic that is not allowed explicitly. Subnet1 contains virtual machines that must communicate with the Azure Cosmos DB service.You need to create an outbound security rule in NSG1 to enable the virtual machines to connect to Azure Cosmos DB. What should you include in the solution?
A. a service tag
B. a private endpoint
C. a subnet delegation
D. an application security group
You have an Azure virtual network named Vnet1.You need to ensure that the virtual machines in Vnet1 can access only the Azure SQL resources in the East US Azure region. The virtual machines must be prevented from accessing any Azure Storage resources. Which two outbound network security group (NSG) rules should you create? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.
A. an allow rule that has the IP address range of Vnet1 as the source and destination of
Sql.EastUS
B. a deny rule that has a source of VirtualNetwork and a destination of Sql
C. a deny rule that has a source of VirtualNetwork and a destination of 168.63.129.0/24
D. a deny rule that has the IP address range of Vnet1 as the source and destination of
Storage
Your company has offices in New York and Amsterdam. The company has an Azure subscription. Both offices connect to Azure by using a Site-to-Site VPN connection.The office in Amsterdam uses resources in the North Europe Azure region. The office in New York uses resources in the East US Azure region. You need to implement ExpressRoute circuits to connect each office to the nearest Azure region. Once the ExpressRoute circuits are connected, the on-premises computers in the Amsterdam office must be able to connect to the on-premises servers in the New York office by using the ExpressRoute circuits. Which ExpressRoute option should you use?
A. ExpressRoute Local
B. ExpressRoute FastPath
C. ExpressRoute Direct
D. ExpressRoute Global Reach
You have an Azure Web Application Firewall (WAF) policy in prevention mode that is associated to an Azure Front Door instance.You need to configure the policy to meet the following requirements: Log all connections from Australia. Deny all connections from New Zealand.Deny all further connections from a network of 131.107.100.0/24 if there are morethan 100 connections during one minute. What is the minimum number of objects you should create?
A. three custom rules that each has one condition
B. one custom rule that has three conditions
C. one custom rule that has one condition
D. one rule that has two conditions and another rule that has one condition
Your company has five offices. Each office has a firewall device and a local internet connection. The offices connect to a third-party SD-WAN.You have an Azure subscription that contains a virtual network named Vnet1. Vnet1 contains a virtual network gateway named Gateway1. Each office connects to Gateway1 by using a Site-to-Site VPN connection.You need to replace the third-party SD-WAN with an Azure Virtual WAN. What should you include in the solution?
A. Delete Gateway1.
B. Create new Point-to-Site (P2S) VPN connections on the firewall devices.
C. Create an Azure Traffic Manager profile.
D. Enable active-active mode on Gateway1.
You have a network security group named NSG1.You need to enable network security group (NSG) flow logs for NSG1. The solution must support retention policies. What should you create first?
A. A standard general-purpose v2 Azure Storage account
B. An Azure Log Analytics workspace
C. A premium Block blobs Azure Storage account
D. A standard general-purpose v1 Azure Storage account
You are configuring two network virtual appliances (NVAs) in an Azure virtual network. The NVAs will be used to inspect all the traffic within the virtual network.You need to provide high availability for the NVAs. The solution must minimize administrative effort. What should you include in the solution?
A. Azure Standard Load Balancer
B. Azure Traffic Manager
C. Azure Application Gateway
D. Azure Front Door
Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. You have two Azure virtual networks named Vnet1 and Vnet2.You have a Windows 10 device named Client1 that connects to Vnet1 by using a Point-toSite (P2S) IKEv2 VPN.You implement virtual network peering between Vnet1 and Vnet2. Vnet1 allows gateway transit. Vnet2 can use the remote gateway. You discover that Client1 cannot communicate with Vnet2. You need to ensure that Client1 can communicate with Vnet2. Solution: You reset the gateway of Vnet1.Does this meet the goal?
A. Yes
B. No
You have an Azure subscription that contains a user named Admin1 and a resource group named RG1.RG1 contains an Azure Network Watcher instance named NW1.You need to ensure that Admin1 can place a lock on NW1. The solution must use the principle of least privilege.Which role should you assign to Admin1?
A. User Access Administrator
B. Network Contributor
C. Resource Policy Contributor
D. Monitoring Contributor
You have an Azure application gateway named AGW1 that has a routing rule named Rule1. Rule 1 directs traffic for http://www.contoso.com to a backend pool named Pool1. Pool1 targets an Azure virtual machine scale set named VMSS1.You deploy another virtual machine scale set named VMSS2. You need to configure AGW1 to direct all traffic for http://www.adatum.com to VMSS2.The solution must ensure that requests to http://www.contoso.com continue to be directed to Pool1.Which three actions should you perform? Each correct answer presents part of the solution.NOTE: Each correct selection is worth one point.
A. Add a backend pool.
B. Modify an HTTP setting.
C. Add an HTTP setting.
D. Add a listener.
E. Add a rule.
You have an Azure Front Door instance named FD1 that is protected by using Azure Web Application Firewall (WAF).FD1 uses a frontend host named app1.contoso.com to provide access to Azure web apps hosted in the East US Azure region and the West US Azure region.You need to configure FD1 to block requests to app1.contoso.com from all countries other than the United States. What should you include in the WAF policy?
A. a frontend host association
B. a managed rule set
C. a custom rule that uses a rate limit rule
D. a custom rule that uses a match rule
You have two Azure virtual networks named Vnet1 and Vnet2.You have a Windows 10 device named Client1 that connects to Vnet1 by using a Point-toSite (P2S) IKEv2 VPN. You implement virtual network peering between Vnet1 and Vnet2. Vnet1 allows gateway transit Vnet2 can use the. You discover that Client1 cannot communicate with Vnet2. You need to ensure that Client1 can communication with Vnet2.Solution: You resize the gateway of Vnet1 to a larger SKU. Does this meet the goal?
A. Yes
B. No
You have an Azure subscription that contains multiple virtual machines in the West US Azure region.You need to use Traffic Analytics. Which two resources should you create? Each correct answer presents part of the solution. (Choose two.)NOTE: Each correct answer selection is worth one point.
A. an Azure Monitor workbook
B. a Log Analytics workspace C a storage account
C. an Azure Sentinel workspace
D. an Azure Monitor data collection rule
You plan to deploy an Azure virtual network.You need to design the subnets.Which three types of resources require a dedicated subnet? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.
A. VPN gateway
B. Azure Bastion
C. Azure Active Directory Domain Services (Azure AD DS)
D. Azure Application Gateway v2
E. Azure Private Link
You have an Azure virtual network named Vnet1 that has one subnet. Vnet1 is in the West Europe Azure region.You deploy an Azure App Service app named App1 to the West Europe region. You need to provide App1 with access to the resources in Vnet1. The solution must minimize costs. What should you do first?
A. Create a private link.
B. Create a new subnet.
C. Create a NAT gateway.
D. Create a gateway subnet and deploy a virtual network gateway.
You have five virtual machines that run Windows Server. Each virtual machine hosts a different web app.You plan to use an Azure application gateway to provide access to each web app by using a hostname of www.contoso.corn and a different URL path for each web app, for example: https://www.contoso.com/app1. You need to control the flow of traffic based on the URL path.What should you configure?
A. rules
B. rewrites
C. HTTP settings
D. listeners
