-
web.groovymark@gmail.com
- December 1, 2024
Question 21
Which Azure Network Watcher service provides the ability to identify a network security group rule that is blocking network communication?
a) Next Hop
b) IP Flow Verify
c) Connection Troubleshoot
d) Network Topology
Correct Answer: b) IP Flow Verify
Explanation: IP Flow Verify helps diagnose if a network flow is allowed or blocked by NSG rules.
Question 22
What is the minimum size of the virtual network subnet required to create an Azure VPN gateway?
a) /24
b) /28
c) /29
d) /30
Correct Answer: c) /29
Explanation: A /29 subnet is the minimum size required for a VPN gateway to function properly.
Question 23
Which feature is available in Azure ExpressRoute but not in Azure Site-to-Site VPNs?
a) Site-to-site connectivity
b) Support for private peering
c) VNet-to-VNet connectivity
d) Dynamic routing
Correct Answer: b) Support for private peering
Explanation: ExpressRoute allows for private connections directly to Azure services, unlike Site-to-Site VPNs.
Question 24
What is the minimum throughput that can be allocated to an Azure Virtual WAN hub gateway?
a) 500 Mbps
b) 1 Gbps
c) 2 Gbps
d) 10 Gbps
Correct Answer: a) 500 Mbps
Explanation: The minimum throughput for an Azure Virtual WAN hub gateway is 500 Mbps.
Question 25
What is the maximum log retention period supported by Azure Log Analytics?
a) 90 days
b) 1 year
c) 2 years
d) 3 years
Correct Answer: c) 2 years
Explanation: Azure Log Analytics supports a maximum retention period of 2 years for log data.
Question 26
What is the retention period for Azure Monitor metrics?
a) 30 days
b) 60 days
c) 90 days
d) 93 days
Correct Answer: d) 93 days
Explanation: Azure Monitor metrics are retained for 93 days by default.
Question 27
Which property of alert logic supports the choice between static and dynamic evaluation?
a) Action Group
b) Alert State
c) Threshold
d) Target Resource
Correct Answer: c) Threshold
Explanation: The threshold property determines how alerts are evaluated and can be set to dynamic conditions.
Question 28
Which Azure service supports monitoring performance for on-premises websites?
a) Azure Monitor
b) Application Insights
c) Azure Security Center
d) Azure Log Analytics
Correct Answer: b) Application Insights
Explanation: Application Insights can monitor and analyze performance metrics for applications, including those hosted on-premises.
Question 29
Which CIDR notation represents a private IP address range that can be used for Azure virtual networks?
a) 192.168.1.0/24
b) 10.255.0.0/16
c) 172.16.0.0/12
d) All of the above
Correct Answer: d) All of the above
Explanation: All provided CIDR notations represent valid private IP address ranges for Azure VNets.
Question 30
What is the first private IP address assignable to an interface on a subnet with a range of 10.0.0.0/24?
a) 10.0.0.0
b) 10.0.0.1
c) 10.0.0.2
d) 10.0.0.255
Correct Answer: b) 10.0.0.1
Explanation: The first assignable IP in a subnet is typically the first address after the network address.
Question 31
What is the default behavior of an Azure network security group regarding internet traffic?
a) Inbound internet traffic is allowed, outbound is blocked
b) Inbound internet traffic is blocked, outbound is allowed
c) Both inbound and outbound traffic is allowed
d) Both inbound and outbound traffic is blocked
Correct Answer: b) Inbound internet traffic is blocked, outbound is allowed
Explanation: By default, Azure NSGs block incoming traffic from the internet while allowing outgoing traffic.
Question 32
Which additional Azure resource is required to implement Azure Bastion?
a) Virtual network
b) Public IP address
c) Network security group
d) Azure Monitor
Correct Answer: b) Public IP address
Explanation: A public IP address is necessary for Azure Bastion to provide secure RDP and SSH access.
Question 33
What is the OSI model layer for Azure Application Gateway traffic routing?
a) Layer 4
b) Layer 5
c) Layer 6
d) Layer 7
Correct Answer: d) Layer 7
Explanation: Azure Application Gateway operates at Layer 7 to handle HTTP/S traffic.
Question 34
Which Azure resource is required to implement Azure Monitor for Networks?
a) Azure Log Analytics workspace
b) Virtual network
c) Azure Storage account
d) Azure Application Gateway
Correct Answer: a) Azure Log Analytics workspace
Explanation: An Azure Log Analytics workspace is needed to store and analyze network monitoring data.
Question 35
Which Azure Network Watcher service provides the ability to identify a network security group rule that is blocking network communication?
a) Next Hop
b) IP Flow Verify
c) Connection Troubleshoot
d) Network Topology
Correct Answer: b) IP Flow Verify
Explanation: IP Flow Verify helps diagnose if a network flow is allowed or blocked by NSG rules.
Question 36
What is the minimum size of the virtual network subnet required to create an Azure VPN gateway?
a) /24
b) /28
c) /29
d) /30
Correct Answer: c) /29
Explanation: A /29 subnet is the minimum size required for a VPN gateway to function properly.
Question 37
Which feature is available in Azure ExpressRoute but not in Azure Site-to-Site VPNs?
a) Site-to-site connectivity
b) Support for private peering
c) VNet-to-VNet connectivity
d) Dynamic routing
Correct Answer: b) Support for private peering
Explanation: ExpressRoute allows for private connections directly to Azure services, unlike Site-to-Site VPNs.
Question 38
What is the minimum throughput that can be allocated to an Azure Virtual WAN hub gateway?
a) 500 Mbps
b) 1 Gbps
c) 2 Gbps
d) 10 Gbps
Correct Answer: a) 500 Mbps
Explanation: The minimum throughput for an Azure Virtual WAN hub gateway is 500 Mbps.
Question 39
What is the maximum log retention period supported by Azure Log Analytics?
a) 90 days
b) 1 year
c) 2 years
d) 3 years
Correct Answer: c) 2 years
Explanation: Azure Log Analytics supports a maximum retention period of 2 years for log data
Question 40
What is the retention period for Azure Monitor metrics?
a) 30 days
b) 60 days
c) 90 days
d) 93 days
Correct Answer: d) 93 days
Explanation: Azure Monitor metrics are retained for 93 days by default.
