Exam Code : AZ-700
Exam Name : Designing and Implementing Microsoft Azure Networking Solutions
Vendor Name :
"Microsoft"
AZ-700 Dumps
AZ-700 Braindumps AZ-700 Real Questions AZ-700 Practice Test
AZ-700 Actual Questions
killexams.com
Designing and Implementing Microsoft Azure Networking Solutions
https://killexams.com/pass4sure/exam-detail/AZ-700
Question: 39
You need to connect Vnet2 and Vnet3. The solution must meet the virtual networking requirements and the business requirements.
Which two actions should you include in the solution? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.
On the peerings from Vnet2 and Vnet3, select Use remote gateways.
On the peering from Vnet1, select Allow forwarded traffic.
On the peering from Vnet1, select Use remote gateways.
On the peering from Vnet1, select Allow gateway transit.
On the peerings from Vnet2 and Vnet3, select Allow gateway transit.
Question: 40
You are planning an Azure Point-to-Site (P2S) VPN that will use OpenVPN. Users will authenticate by using an on premises Active Directory domain. Which additional service should you deploy to support the VPN authentication?
a certification authority (CA)
a RADIUS server
an Azure key vault
Azure Active Directory (Azure AD) Application Proxy
Reference: https://docs.microsoft.com/en-us/azure/vpn-gateway/point-to-site-about
Question: 41
You need to configure the default route on Vnet2 and Vnet3. The solution must meet the virtual networking requirements.
What should you use to configure the default route?
route filters
BGP route exchange
a user-defined route assigned to GatewaySubnet in Vnet1
a user-defined route assigned to GatewaySubnet in Vnet2 and Vnet3
Explanation:
Reference: https://docs.microsoft.com/en-us/azure/virtual-network/virtual-networks-udr-overview
Question: 42
HOTSPOT
You need to implement a P2S VPN for the users in the branch office. The solution must meet the hybrid networking requirements.
What should you do? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
Explanation:
Graphical user
interface, text, application, email Description automatically generated
Question: 43
Topic 1, Litware. Inc Case Study 1 Overview
Litware. Inc. is a financial company that has a main datacenter in Boston and 20 branch offices across the United States. Users have Android, iOS, and Windows 10 devices.
Existing Environment: Hybrid Environment
The on-prernises network contains an Active Directory forest named litwareinc.com that syncs to an Azure Active Directory (Azure AD) tenant named litwareinc.com by usinq Azure AD Connect.
All the offices connect to a virtual network named Vnetl by using a Site-to-Site VPN connection. Azure Environment
Litware has an Azure subscription named Sub1 that is linked to the litwareinc.com Azure AD tenant. Sub1 contains resources in the East US Azure region as shown in the following table.
There is bidirectional peering between Vnet1 and Vnet2. There is bidirectional peering between Vnet1 and Vnet3. Currently, Vnet2 and Vnet3 cannot communicate directly.
Requirements: Business Requirements
Litware wants to minimize costs whenever possible, as long as all other requirements are met. Virtual Networking Requirements
Litware identifies the following virtual networking requirements:
Direct the default route of 0.0.0.0/0 on Vnet2 and Vnet3 to the Boston datacenter over an ExpressRoute circuit.
Ensure that the records in the cloud.litwareinc.com zone can be resolved from the on-premises locations.
Automatically register the DNS names of Azure virtual machines to the cloud.litwareinc.com zone.
Minimize the size of the subnets allocated to platform-managed services.
Allow traffic from VMScaleSet1 to VMScaleSet2 on the TCP port 443 only. Hybrid Networking Requirements
Litware identifies the following hybrid networking requirements:
Users must be able to connect to Vnet1 by using a Point-to-Site (P2S) VPN when working remotely. Connections must be authenticated by Azure AD.
Latency of the traffic between the Boston datacenter and all the virtual networks must be minimized.
The Boston datacenter must connect to the Azure virtual networks by using an ExpressRoute FastPath connection.
Traffic between Vnet2 and Vnet3 must be routed through Vnet1. PaaS Networking Requirements
Litware identifies the following networking requirements for platform as a service (PaaS):
The storage1 account must be accessible from all on-premises locations without exposing the public endpoint of storage1.
The storage2 account must be accessible from Vnet2 and Vnet3 without exposing the public endpoint of storage2. You need to configure the default route in Vnet2 and Vnet3. The solution must meet the virtual networking
requirements.
What should you use to configure the default route?
a user-defined route assigned to GatewaySubnet in Vnet2 and Vnet3
a user-defined route assigned to GatewaySubnet in Vnet1
BGP route exchange
route filters
VNet 1 will get the default from BGP and propagate it to VNET 2 and 3
Question: 44
You have the Azure Traffic Manager profiles shown in the following table.
You plan to add the endpoints shown in the following table.
Which endpoints can you add to Profile2?
Endpoint1 and Endpoint4 only
Endpoint1, Endpoint2, Endpoint3, and Endpoint4
Endpoint1 only
Endpoint2 and Endpoint3 only
Endpoint3 only
Answer: A
Question: 45 HOTSPOT
You have an Azure subscription that contains a single virtual network and a virtual network gateway.
You need to ensure that administrators can use Point-to-Site (P2S) VPN connections to access resources in the virtual network. The connections must be authenticated by Azure Active Directory (Azure AD).
What should you configure? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.
Question: 46
DRAG DROP
You need to prepare Vnet1 for the deployment of an ExpressRoute gateway. The solution must meet the hybrid connectivity requirements and the business requirements.
Which three actions should you perform in sequence for Vnet1? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.
Question: 47
You have an Azure subscription that is linked to an Azure Active Directory (Azure AD) tenant named
contoso.onmicrosoft.com.
The subscription contains the following resources:
An Azure App Service app named App1
An Azure DNS zone named contoso.com
An Azure private DNS zone named private.contoso.com
A virtual network named Vnet1
You create a private endpoint for App1. The record for the endpoint is registered automatically in Azure DNS. You need to provide a developer with the name that is registered in Azure DNS for the private endpoint. What should you provide?
app1.privatelink.azurewebsites.net
app1.contoso.com
app1.contoso.onmicrosoft.com
app1.private.contoso.com
Answer: A
Question: 48 HOTSPOT
Your company has 10 instances of a web service. Each instance is hosted in a different Azure region and is accessible through a public endpoint.
The development department at the company is creating an application named App1. Every 10 minutes. App1 will use a list of end points and connect to the first available endpoint.
You plan to use Azure Traffic Manager to maintain the list of endpoints.
You need to configure a Traffic Manager profile that will minimize the impact of DNS caching.
What should you configure? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.