AZ-700 Online Practice Questions and Answers

You have an Azure application gateway for a web app named App1. The application gateway allows end-to-end encryption.

You configure the listener for HTTPS by uploading an enterprise-signed certificate.

You need to ensure that the application gateway can provide end-to-end encryption for App1.

What should you do?

A. Increase the Unhealthy threshold setting in the custom probe.

B. Enable the SSL profile to the listener.

C. Set Listener type to Multi site.

D. Upload the public key certificate to the HTTP settings.

You have an Azure subscription that contains two virtual networks named VritualNetwork1 and VritualNetwork2.

You have a Windows 10 device that connects to VritualNetwork1 by using a Point-to-Site (P2S) IKEv2 VPN. You have implemented virtual network peering between VritualNetwork1 and VritualNetwork2.

VritualNetwork1 allows gateway transit. VritualNetwork2 can use the remote gateway. You discover that you cannot communicate with VritualNetwork2 from Windows 10 device. You need to ensure that you can communicate with

VritualNetwork2 from Windows 10 device.

To achieve the requirement, you enable BGP on the gateway of VritualNetwork1.

Did you achieve the requirement?

A. Yes

B. No

You need to ensure that the URL is accessible through the application gateway.

To achieve the requirement, you add a rewrite rule for the host header.

Did you achieve the requirement?

A. Yes

B. No

Your company has an Azure virtual network named Vnet1 that uses an IP address space of 192.168.0.0/20.

Vnet1 contains a subnet named Subnet1 that uses an IP address space of 192.168.0.0/24. You create an IPv6 address range to Vnet1 by using a CIDR suffix of /48. You need to enable the virtual machines on Subnet1 to communicate with

each other by using IPv6 addresses assigned by the company.

The solution must minimize the number of additional IPv4 addresses.

What should you do for each virtual machine?

A. Create an additional IP configuration

B. Create an additional NIC

C. Create a public IPv6 address

You plan to deploy an Azure App Service web app that will have multiple instances across multiple Azure regions. You need to deploy a load balancing service for the planned deployment. The solution must meet the following requirements:

Maintain access to the app in the event of a regional outage.

Support Azure Web Application Firewall (WAF).

Support cookie-based affinity.

Support URL routing.

What should you deploy?

A. Azure Front Door

B. Azure Load Balancer

C. Azure Traffic Manager

D. Azure Application Gateway

You have an Azure subscription that contains a virtual network named Vnet1. Vnet1 contains a virtual machine named VM1 and an Azure firewall named FW1.

You have an Azure Firewall Policy named FP1 that is associated to FW1.

You need to ensure that RDP requests to the public IP address of FW1 route to VM1.

What should you configure on FP1?

A. a network rule

B. URL filtering

C. a DNAT rule

D. an application rule

HOTSPOT

You have an Azure subscription that contains the virtual machines shown in the following table.

Subnet1 and Subnet2 are associated to a network security group (NSG) named NSG1 that has the following outbound rule:

Priority: 100 Port: Any Protocol: Any Source: Any Destination: Storage Action: Deny

You create a private endpoint that has the following settings:

Name: Private1 Resource type: Microsoft.Storage/storageAccounts Resource: storage1 Target sub-resource: blob Virtual network: Vnet1 Subnet: Subnet1

For each of the following statements, select Yes of the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Hot Area:

HOTSPOT

You have an Azure subscription that contains the virtual networks shown in the following table.

The subscription contains the virtual machines shown in the following table.

You create a load balancer named LB1 that has the following configurations:

1.

SKU: Basic

2.

Type: Internal

3.

Subnet: Subnetl2

4.

Virtual network VNet1

For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.

Hot Area:

HOTSPOT

You have an Azure application gateway.

You need to create a rewrite rule that will remove the origin port from the HTTP header of incoming requests that are being forwarded to the backend pool.

How should you configure each setting? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Hot Area:

HOTSPOT

You need to implement name resolution for the cloud.liwareinc.com. The solution must meet the networking requirements.

What should you do? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Hot Area: