This page was exported from IT certification exam materials [ http://blog.dumpleader.com ]

Export date:Fri Jan 31 8:04:40 2025 / +0000 GMT

___________________________________________________


Title: New AZ-700 Test Materials &amp; Valid AZ-700 Test Engine [Q19-Q42]

---------------------------------------------------


 New AZ-700 Test Materials &amp; Valid AZ-700 Test Engine
AZ-700 Updated Exam Dumps [2023] Practice Valid Exam Dumps Question


NEW QUESTION 19You need to configure the default route on Vnet2 and Vnet3. The solution must meet the virtual networking requirements.What should you use to configure the default route?
&nbsp;route filters
&nbsp;BGP route exchange
&nbsp;a user-defined route assigned to GatewaySubnet in Vnet1
&nbsp;a user-defined route assigned to GatewaySubnet in Vnet2 and Vnet3
Reference:https://docs.microsoft.com/en-us/azure/virtual-network/virtual-networks-udr-overview Overview This is a case study. Case studies are not timed separately. You can use as much exam time as you would like to complete each case. However, there may be additional case studies and sections on this exam. You must manage your time to ensure that you are able to complete all questions included on this exam in the time provided.To answer the questions included in a case study, you will need to reference information that is provided in the case study. Case studies might contain exhibits and other resources that provide more information about the scenario that is described in the case study. Each question is independent of the other questions in this case study.At the end of this case study, a review screen will appear. This screen allows you to review your answers and to make changes before you move to the next section of the exam. After you begin a new section, you cannot return to this section.To start the case studyTo display the first question in this case study, click the Next button. Use the buttons in the left pane to explore the content of the case study before you answer the questions. Clicking these buttons displays information such as business requirements, existing environment, and problem statements. If the case study has an All Information tab. note that the information displayed is identical to the information displayed on the subsequent tabs. When you are ready to answer a question, click the Question button to return to the question.NEW QUESTION 20You need to recommend a configuration for the ExpressRoute connection from the Boston datacenter. The solution must meet the hybrid networking requirements and business requirements.What should you recommend? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point.
ExplanationGraphical user interface, text, application Description automatically generatedNEW QUESTION 21You have two Azure virtual networks named Hub1 and Spoke1. Hub1 connects to an on-premises network by using a Site-to-Site VPN connection.You are implementing peering between Hub1 and Spoke1.You need to ensure that a virtual machine connected to Spoke1 can connect to the on-premises network through Hub1.How should you complete the PowerShell script? To answer, drag the appropriate values to the correct targets.Each value may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.NOTE: Each correct selection is worth one point.
ExplanationGraphical user interface, text, application Description automatically generatedReference:https://docs.microsoft.com/en-us/azure/architecture/reference-architectures/hybrid-networking/hub-spoke?tabs=cNEW QUESTION 22You have an Azure Front Door instance named FD1 that is protected by using Azure Web Application Firewall (WAF).FD1 uses a frontend host named app1.contoso.com to provide access to Azure web apps hosted in the East US Azure region and the West US Azure region.You need to configure FD1 to block requests to app1.contoso.com from all countries other than the United States.What should you include in the WAF policy?
&nbsp;a frontend host association
&nbsp;a managed rule set
&nbsp;a custom rule that uses a rate limit rule
&nbsp;a custom rule that uses a match rule
NEW QUESTION 23You have two Azure virtual networks named Hub1 and Spoke1. Hub1 connects to an on-premises network by using a Site-to-Site VPN connection.You are implementing peering between Hub1 and Spoke1.You need to ensure that a virtual machine connected to Spoke1 can connect to the on-premises network through Hub1.How should you complete the PowerShell script? To answer, drag the appropriate values to the correct targets. Each value may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.NOTE: Each correct selection is worth one point.
Reference:https://docs.microsoft.com/en-us/azure/architecture/reference-architectures/hybrid-networking/hub-spoke?tabs=cli#virtual-network-peeringNEW QUESTION 24You need to connect an on-premises network and an Azure environment. The solution must use ExpressRoute and support failing over to a Site-to-Site VPN connection if there is an ExpressRoute failure.What should you configure? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point.
Reference:https://docs.microsoft.com/en-us/azure/expressroute/expressroute-howto-coexist-resource-managerNEW QUESTION 25You are implementing the virtual network requirements for VM Analyze.What should you include in a custom route that is linked to Subnet2? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point.
Reference:https://docs.microsoft.com/en-us/azure/virtual-network/virtual-networks-udr-overviewNEW QUESTION 26You configure a route table named RT1 that has the routes shown in the following table.You have an Azure virtual network named Vnet1 that has the subnets shown in the following table.You have the resources shown in the following table.Vnet1 connects to an ExpressRoute circuit. The on-premises router advertises the following routes:* 0.0.0.0/0* 10.0.0.0/16For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
NEW QUESTION 27Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.You have an Azure application gateway that has Azure Web Application Firewall (WAF) enabled.You configure the application gateway to direct traffic to the URL of the application gateway.You attempt to access the URL and receive an HTTP 403 error. You view the diagnostics log and discover the following error.You need to ensure that the URL is accessible through the application gateway.Solution: You configure a custom cookie and an exclusion rule.Does this meet the goal?
&nbsp;Yes
&nbsp;No
NEW QUESTION 28You have two Azure App Service instances that host the web apps shown the following table.You deploy an Azure application gateway that has one public frontend IP address and two backend pools.You need to publish all the web apps to the application gateway. Requests must be routed based on the HTTP host headers.What is the minimum number of listeners and routing rules you should configure? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point.
NEW QUESTION 29You have an Azure subscription that contains the virtual machines shown in the following table.Subnet1 and Subnet2 are associated to a network security group (NSG) named NSG1 that has the following outbound rule:Priority: 100Port: AnyProtocol: AnySource: AnyDestination: StorageAction: DenyYou create a private endpoint that has the following settings:Name: Private1Resource type: Microsoft.Storage/storageAccountsResource: storage1Target sub-resource: blobVirtual network: Vnet1Subnet: Subnet1For each of the following statements, select Yes of the statement is true. Otherwise, select No.NOTE: Each correct selection is worth one point.
NEW QUESTION 30Task 8You need to ensure that the storage34280945 storage account will only accept connections from hosts on VNET1.
See the Explanation below for step by step instructions.ExplanationHere are the steps and explanations for ensuring that the storage34280945 storage account will only accept connections from hosts on VNET1:* To restrict network access to your storage account, you need to configure the Azure Storage firewall and virtual network settings for your storage account. You can do this in the Azure portal by selecting your* storage account and then selecting Networking under Settings1.* On the Networking page, select Firewalls and virtual networks, and then select Selected networks under Allow access from1. This will block all access to your storage account except from the networks or resources that you specify.* Under Virtual networks, select + Add existing virtual network. Then select VNET1 from the list of virtual networks and select the subnet that contains the hosts that you want to allow access to your storage account1. This will enable a service endpoint for Storage in the subnet and configure a virtual network rule for that subnet through the Azure storage firewall2.* Select Add to add the virtual network and subnet to your storage account1.* Select Save to apply your changes1.NEW QUESTION 31You have an Azure subscriptionYou plan to use Azure Virtual WAN.You need to deploy a virtual WAN hub that meets the following requirements:* Supports 4 Gbps of Site-to-Site (S2S) VPN traffic* Supports 8 Gbps of ExpressRoute traffic* Minimizes costsHow many scale units should you configure? To answer select the appropriate options in the answer area.NOTE Each correct selection is worth one point.
NEW QUESTION 32You have an Azure subscription that contains a virtual network named VNet1. VNet1 contains the resources shown in the following table.You need to publish App1 by using AG1 and a URL of https://app1.contoso.com. The solution must meet the following requirements:* TLS connections must terminate on AG1.* Minimize the number of targets in the backend pool of AG1.* Minimize the number of deployed copies of the SSL certificate of App1.How many locations should you import to the certificate, and how many targets should you add to the backend pool of AG1? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point.
ExplanationNEW QUESTION 33For each of the following statements, select Yes if the statement is true. Otherwise, select No.NOTE: Each correct selection is worth one point.
NEW QUESTION 34You have an Azure subscription that contains the resources is shown in the following table.You need to ensure that the apps hosted on VM1 can resolve the IP address of the What should you create first?
&nbsp;a public DNS zone named database.windows.net
&nbsp;a private DNS zone named database.windows.net
&nbsp;a public DNS zone named private ink.database.windows.net
&nbsp;a private DNS zone named privatelink.database.windows.net
NEW QUESTION 35You need to recommend a configuration for the ExpressRoute connection from the Boston datacenter. The solution must meet the hybrid networking requirements and business requirements.What should you recommend? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point.
Topic 2, ContosoExisting Environment:Azure Network InfrastructureContoso has an Azure Active Directory (Azure AD) tenant named contoso.com.The Azure subscription contains the virtual networks shown in the following table.Vnet1 contains a virtual network gateway named GW1.Azure Virtual MachinesThe Azure subscription contains virtual machines that run Windows Server 2019 as shown in the following table.The NSGs are associated to the network interfaces on the virtual machines. Each NSG has one custom security rule that allows RDP connections from the internet. The firewall on each virtual machine allows ICMP traffic.An application security group named ASG1 is associated to the network interface of VM1.Azure Private DNS ZonesThe Azure subscription contains the Azure private DNS zones shown in the following table.Zone1.contoso.com has the virtual network links shown in the following table.Other Azure ResourcesThe Azure subscription contains additional resources as shown in the following table.Requirements:Virtual Network RequirementsContoso has the following virtual networks requirements:* Create a virtual network named Vnet6 in West US that will contain the following resources and configurations:Two container groups that connect to Vnet6Three virtual machines that connect to Vnet6Allow VPN connections to be established to Vnet6Allow the resources in Vnet6 to access KeyVault1, DB1, and Vnet1 over the Microsoft backbone network* The virtual machines in Vnet4 and Vnet5 must be able to communicate over the Microsoft backbone network.* A virtual machine named VM-Analyze will be deployed to Subnet1. VM-Analyze must inspect the outbound network traffic from Subnet2 to the internet.Network Security RequirementsContoso has the following network security requirements:* Configure Azure Active Directory (Azure AD) authentication for Point-to-Site (P2S) VPN users.* Enable NSG flow logs for NSG3 and NSG4.* Create an NSG named NSG10 that will be associated to Vnet1/Subnet1 and will have the custom inbound security rules shown in the following table.* Create an NSG named NSG11 that will be associated to Vnet1/Subnet2 and will have the custom outbound security rules shown in the following table.NEW QUESTION 36You have an Azure application gateway.You need to create a rewrite rule that will remove the origin port from the HTTP header of incoming requests that are being forwarded to the backend pool.How should you configure each setting? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point.
ExplanationNEW QUESTION 37You have an Azure application gateway named AppGW1 that provides access to the following hosts:* www.adatum.com* www.contoso.com* www.fabrikam.comAppGW1 has the listeners shown in the following table.You create Azure Web Application Firewall (WAF) policies for AppGW1 as shown in the following table.For each of the following statements, select Yes if the statement is true. Otherwise, select No.NOTE: Each correct selection is worth one point.
Reference:https://docs.microsoft.com/en-us/azure/web-application-firewall/ag/per-site-policiesNEW QUESTION 38You have an Azure subscription that contains two virtual networks named Vnet1 and Vnet2.You register a public DNS zone named fabrikam.com. The zone is configured as shown in the Public DNS Zone exhibit.You have a private DNS zone named fabrikam.com. The zone is configured as shown in the Private DNS Zone exhibit.You have a virtual network link configured as shown in the Virtual Network Link exhibit.For each of the following statements, select Yes if the statement is true. Otherwise, select No.NOTE: Each correct selection is worth one point.
ExplanationGraphical user interface, text, application, email Description automatically generatedBox 1: YesDNS queries from the internet use the public DNS zone. In the public DNS zone, www.fabrikam.com is a CNAME record that resolves to appservice1.fabrikam.com which resolves to 131.107.1.1.Box 2: NoDNS queries from the internet use the public DNS zone. There is no DNS record for server1.fabrikam.com in the public DNS zone.Box 3: NoThe private DNS zone is linked to VNet1, not VNet2. Therefore, resources in VNet2 cannot query the private DNS zone.NEW QUESTION 39You have the Azure environment shown in the exhibit.You have virtual network peering between Vnet1 and Vnet2. You have virtual network peering between Vnet4 and Vnet5. The virtual network peering is configured as shown in the following table.For each of the following statements, select Yes if the statement is true. Otherwise, select No.NOTE: Each correct selection is worth one point.
NEW QUESTION 40You have an Azure Front Door instance named FD1 that is protected by using Azure Web Application Firewall (WAF).FD1 uses a frontend host named app1.contoso.com to provide access to Azure web apps hosted in the East US Azure region and the West US Azure region.You need to configure FD1 to block requests to app1.contoso.com from all countries other than the United States.What should you include in the WAF policy?
&nbsp;a frontend host association
&nbsp;a managed rule set
&nbsp;a custom rule that uses a rate limit rule
&nbsp;a custom rule that uses a match rule
NEW QUESTION 41You have an Azure application gateway named AppGW1 that balances requests to a web app named App1.You need to modify the server variables in the response header of App1.What should you configure on AppGW1?
&nbsp;HTTP settings
&nbsp;rewrites
&nbsp;rules
&nbsp;listeners
NEW QUESTION 42Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.You have an Azure application gateway that has Azure Web Application Firewall (WAF) enabled.You configure the application gateway to direct traffic to the URL of the application gateway.You attempt to access the URL and receive an HTTP 403 error. You view the diagnostics log and discover the following error.You need to ensure that the URL is accessible through the application gateway.Solution: You configure a custom cookie and an exclusion rule.Does this meet the goal?
&nbsp;Yes
&nbsp;No
&nbsp;Loading &#8230;


AZ-700 Sample with Accurate &amp; Updated Questions: https://www.dumpleader.com/AZ-700_exam.html


---------------------------------------------------


Images: https://blog.dumpleader.com/wp-content/plugins/watu/loading.gif

https://blog.dumpleader.com/wp-content/plugins/watu/loading.gif


---------------------------------------------------


---------------------------------------------------


Post date: 2023-10-17 13:00:36

Post date GMT: 2023-10-17 13:00:36

Post modified date: 2023-10-17 13:00:36

Post modified date GMT: 2023-10-17 13:00:36