AZ-700 Dumps

AZ-700 Braindumps AZ-700 Real Questions AZ-700 Practice Test

AZ-700 Actual Questions

killexams.com

Microsoft

AZ-700

Designing and Implementing Microsoft Azure Networking Solutions

https://killexams.com/pass4sure/exam-detail/AZ-700

Question: 39

You need to connect Vnet2 and Vnet3. The solution must meet the virtual networking requirements and the business requirements.

Which two actions should you include in the solution? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.

1. On the peerings from Vnet2 and Vnet3, select Use remote gateways.

2. On the peering from Vnet1, select Allow forwarded traffic.

3. On the peering from Vnet1, select Use remote gateways.

4. On the peering from Vnet1, select Allow gateway transit.

5. On the peerings from Vnet2 and Vnet3, select Allow gateway transit.

Answer: B,D

Question: 40

You are planning an Azure Point-to-Site (P2S) VPN that will use OpenVPN. Users will authenticate by using an on premises Active Directory domain. Which additional service should you deploy to support the VPN authentication?

1. a certification authority (CA)

2. a RADIUS server

3. an Azure key vault

4. Azure Active Directory (Azure AD) Application Proxy

Answer: B Explanation:

Reference: https://docs.microsoft.com/en-us/azure/vpn-gateway/point-to-site-about

Question: 41

You need to configure the default route on Vnet2 and Vnet3. The solution must meet the virtual networking requirements.

What should you use to configure the default route?

1. route filters

2. BGP route exchange

3. a user-defined route assigned to GatewaySubnet in Vnet1

4. a user-defined route assigned to GatewaySubnet in Vnet2 and Vnet3

Answer: B

Explanation:

Reference: https://docs.microsoft.com/en-us/azure/virtual-network/virtual-networks-udr-overview

Question: 42

HOTSPOT

You need to implement a P2S VPN for the users in the branch office. The solution must meet the hybrid networking requirements.

What should you do? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

Answer:

Explanation:

Graphical user

interface, text, application, email Description automatically generated

Question: 43

Topic 1, Litware. Inc Case Study 1 Overview

Litware. Inc. is a financial company that has a main datacenter in Boston and 20 branch offices across the United States. Users have Android, iOS, and Windows 10 devices.

Existing Environment: Hybrid Environment

The on-prernises network contains an Active Directory forest named litwareinc.com that syncs to an Azure Active Directory (Azure AD) tenant named litwareinc.com by usinq Azure AD Connect.

All the offices connect to a virtual network named Vnetl by using a Site-to-Site VPN connection. Azure Environment

Litware has an Azure subscription named Sub1 that is linked to the litwareinc.com Azure AD tenant. Sub1 contains resources in the East US Azure region as shown in the following table.

There is bidirectional peering between Vnet1 and Vnet2. There is bidirectional peering between Vnet1 and Vnet3. Currently, Vnet2 and Vnet3 cannot communicate directly.

Requirements: Business Requirements

Litware wants to minimize costs whenever possible, as long as all other requirements are met. Virtual Networking Requirements

Litware identifies the following virtual networking requirements:

• Direct the default route of 0.0.0.0/0 on Vnet2 and Vnet3 to the Boston datacenter over an ExpressRoute circuit.

  
  

• Ensure that the records in the cloud.litwareinc.com zone can be resolved from the on-premises locations.

  
  

• Automatically register the DNS names of Azure virtual machines to the cloud.litwareinc.com zone.

  
  

• Minimize the size of the subnets allocated to platform-managed services.

  
  

• Allow traffic from VMScaleSet1 to VMScaleSet2 on the TCP port 443 only. Hybrid Networking Requirements

  Litware identifies the following hybrid networking requirements:

  
  

• Users must be able to connect to Vnet1 by using a Point-to-Site (P2S) VPN when working remotely. Connections must be authenticated by Azure AD.

  
  

• Latency of the traffic between the Boston datacenter and all the virtual networks must be minimized.

  
  

• The Boston datacenter must connect to the Azure virtual networks by using an ExpressRoute FastPath connection.

  
  

• Traffic between Vnet2 and Vnet3 must be routed through Vnet1. PaaS Networking Requirements

  Litware identifies the following networking requirements for platform as a service (PaaS):

  
  

• The storage1 account must be accessible from all on-premises locations without exposing the public endpoint of storage1.

• The storage2 account must be accessible from Vnet2 and Vnet3 without exposing the public endpoint of storage2. You need to configure the default route in Vnet2 and Vnet3. The solution must meet the virtual networking

  requirements.

  
  

  What should you use to configure the default route?

  1. a user-defined route assigned to GatewaySubnet in Vnet2 and Vnet3

  2. a user-defined route assigned to GatewaySubnet in Vnet1

  3. BGP route exchange

  4. route filters

  
  

  Answer: A Explanation:

  VNet 1 will get the default from BGP and propagate it to VNET 2 and 3

  
  

  Question: 44

  You have the Azure Traffic Manager profiles shown in the following table.

  
  

  
  

  You plan to add the endpoints shown in the following table.

  
  

  
  

  Which endpoints can you add to Profile2?

  1. Endpoint1 and Endpoint4 only

  2. Endpoint1, Endpoint2, Endpoint3, and Endpoint4

  3. Endpoint1 only

  4. Endpoint2 and Endpoint3 only

  5. Endpoint3 only

  
  

  Answer: A Question: 45 HOTSPOT

  You have an Azure subscription that contains a single virtual network and a virtual network gateway.

  
  

  You need to ensure that administrators can use Point-to-Site (P2S) VPN connections to access resources in the virtual network. The connections must be authenticated by Azure Active Directory (Azure AD).

  
  

  What should you configure? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

  
  

  Answer:

  
  

  Question: 46

  
  

  DRAG DROP

  
  

  You need to prepare Vnet1 for the deployment of an ExpressRoute gateway. The solution must meet the hybrid connectivity requirements and the business requirements.

  
  

  Which three actions should you perform in sequence for Vnet1? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

  
  

  
  

  Answer:

  
  

  Question: 47

  
  

  You have an Azure subscription that is linked to an Azure Active Directory (Azure AD) tenant named

  contoso.onmicrosoft.com.

  
  

  The subscription contains the following resources:

  
  

• An Azure App Service app named App1

  
  

• An Azure DNS zone named contoso.com

  
  

• An Azure private DNS zone named private.contoso.com

  
  

• A virtual network named Vnet1

You create a private endpoint for App1. The record for the endpoint is registered automatically in Azure DNS. You need to provide a developer with the name that is registered in Azure DNS for the private endpoint. What should you provide?

1. app1.privatelink.azurewebsites.net

2. app1.contoso.com

3. app1.contoso.onmicrosoft.com

4. app1.private.contoso.com

Answer: A Question: 48 HOTSPOT

Your company has 10 instances of a web service. Each instance is hosted in a different Azure region and is accessible through a public endpoint.

The development department at the company is creating an application named App1. Every 10 minutes. App1 will use a list of end points and connect to the first available endpoint.

You plan to use Azure Traffic Manager to maintain the list of endpoints.

You need to configure a Traffic Manager profile that will minimize the impact of DNS caching.

What should you configure? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

Answer: