new microsoft az-700 certification exam

More Latest AZ-700 Dumps Exam Questions-> Designing and Implementing Microsoft Azure Networking Solutions Updated AZ-700 Dumps Questions [2022.3]: https://examdumpsbase.com/designing-and-implementing-microsoft-azure-networking-solutions-updated-az-700-dumps-questions-2022/

The Designing and Implementing Microsoft Azure Networking Solutions exam code AZ-700 is available now.

Latest Azure az-700 exam questions and answers – leads4pass az-700 dumps

We have been preparing for a long time! Azure AZ-700 is a new and very popular exam certification project. We have done enough preparations to release the AZ-700 project! 100% guaranteed pass rate!

Azure AZ-700 exam core: Design, implement, and manage hybrid networking, Design and implement core networking infrastructure, Design and implement routing, Secure and monitor networks, Design and implement Private access to Azure Services. We do all the core issues Fully prepared. Get AZ-700 dumps https://www.leads4pass.com/az-700.html (57 Q&A Dumps PDF+VCE). Guarantee to pass the exam successfully!

For specific exam details, you should first visit the official Microsoft AZ-700 information: (Description, Schedule exam, Skills measured, prepare, Exam resources)

Microsoft certification is a very popular certification. Azure Network Engineer Associate is one of the popular Microsoft certifications. This site shares some exam practice questions from a part of leads4pass dumps.

Maybe you or your friends want more other Microsoft certification dumps https://www.leads4pass.com/microsoft.html. You are welcome to bookmark and share!

Now enter our actual combat stage!

Azure AZ-700 exam questions online test

The answer is announced at the end of the article

QUESTION 1

You have an Azure subscription that contains an Azure App Service app.

The app uses a URL of https://www.contoso.com.

You need to use a custom domain on Azure Front Door for www.contoso.com.

The custom domain must use a certificate from an allowed certification authority (CA).

What should you include in the solution?

A. an enterprise application in Azure Active Directory (Azure AD)

B. Active Directory Certificate Services (AD CS)

C. Azure Key Vault

D. Azure Application Gateway

Reference: https://docs.microsoft.com/en-us/azure/frontdoor/front-door-custom-domain-https

QUESTION 2

You plan to publish a website that will use an FQDN of www.contoso.com.

The website will be hosted by using the Azure App Service apps shown in the following table.

microsoft az-700 exam questions q2

You plan to use Azure Traffic Manager to manage the routing of traffic for www.contoso.com between AS1 and AS2.

You need to ensure that Traffic Manager routes traffic for www.contoso.com.

Which DNS record should you create?

A. two A records that map www.contoso.com to 131.107.100.1 and 131.107.200.1

B. a CNAME record that maps www.contoso.com to TMprofile1.azurefd.net

C. a CNAME record that maps www.contoso.com to TMprofile1.trafficmanager.net

D. a TXT record that contains a string of as1.contoso.com and as2.contoso.com in the details

Reference: https://docs.microsoft.com/en-us/azure/traffic-manager/quickstart-create-traffic-manager-profile
https://docs.microsoft.com/en-us/azure/app-service/configure-domain-traffic-manager

QUESTION 3

You have an Azure subscription that is linked to an Azure Active Directory (Azure AD) tenant named contoso.onmicrosoft.com.

The subscription contains the following resources:

An Azure App Service app named App1  An Azure DNS zone named contoso.com An Azure private DNS zone named private.contoso.com A virtual network named Vnet1 You create a private endpoint for App1.

The record for the endpoint is registered automatically in Azure DNS.

You need to provide a developer with the name that is registered in Azure DNS for the private endpoint.

What should you provide?

A. app1.contoso.onmicrosoft.com

B. app1.private.contoso.com

C. app1.privatelink.azurewebsites.net

D. app1.contoso.com

QUESTION 4

DRAG DROP

You need to implement outbound connectivity for VMScaleSet1.

The solution must meet the virtual networking requirements and the business requirements.

Which three actions should you perform in sequence?

To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

Select and Place:

microsoft az-700 exam questions q4

Correct Answer:

microsoft az-700 exam questions q4-1

Reference: https://docs.microsoft.com/en-us/azure/load-balancer/skus
https://docs.microsoft.com/en-us/azure/load-balancer/load-balancer-outbound-connections#outboundrules

QUESTION 5

What should you implement to meet the virtual network requirements for the virtual machines that connect to Vnet4 and Vnet5?

A. a private endpoint

B. a routing table

C. a service endpoint

D. a private link service

E. a virtual network peering

Explanation:

There is no virtual network peering between VM4\\’s VNet (VNet3) and VM5\\’s VNet (VNet4).

To enable the VMs to communicate over the Microsoft backbone network a VNet peering is required between VNet3 and VNet4.

QUESTION 6

HOTSPOT

Which virtual machines can VM1 and VM4 ping successfully?

To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Hot Area:

microsoft az-700 exam questions q6

Correct Answer:

microsoft az-700 exam questions q6-1

Explanation:

Box 1:

VM2, VM3 and VM4.

VM1 is in VNet1/Subnet1.

VNet1 is peered with VNet2 and VNet3.

There are no NSGs blocking outbound ICMP from VNet1.

There are no NSGs blocking inbound ICMP to VNet1/Subnet2, VNet2 or VNet3.

Therefore, VM1 can ping VM2 in VNet1/Subnet2, VM3 in VNet2 and VM4 in VNet3.

Box 2:

VM4 is in VNet3.

VNet3 is peered with VNet1 and VNet2.

There are no NSGs blocking outbound ICMP from VNet3.

There are no NSGs blocking inbound ICMP to VNet1/Subnet1, VNet1/Subnet2 or VNet2 from VNet3 (NSG10 blocks inbound ICMP from VNet4 but not from VNet3).

Therefore, VM4 can ping VM1 in VNet1/Subnet1, VM2 in VNet1/Subnet2 and VM3 in VNet2.

QUESTION 7

HOTSPOT

You are implementing the virtual network requirements for VM-Analyze.

What should you include in a custom route that is linked to Subnet2?

To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Hot Area:

microsoft az-700 exam questions q7

Correct Answer:

microsoft az-700 exam questions q7-1

Reference: https://docs.microsoft.com/en-us/azure/virtual-network/virtual-networks-udr-overview

QUESTION 8

HOTSPOT

You need to implement name resolution for the cloud.liwareinc.com.

The solution must meet the networking requirements.

What should you do?

To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Hot Area:

microsoft az-700 exam questions q8

Correct Answer:

microsoft az-700 exam questions q8-1

Reference: https://docs.microsoft.com/en-us/azure/dns/private-dns-autoregistration
https://docs.microsoft.com/en-us/azure/virtual-network/virtual-networks-name-resolution-for-vms-and-role-instances

QUESTION 9

DRAG DROP

You have an Azure virtual network named Vnet1 that connects to an on-premises network.

You have an Azure Storage account named storageaccount1 that contains blob storage.

You need to configure a private endpoint for the blob storage.

The solution must meet the following requirements:

Ensure that all on-premises users can access storageaccount1 through the private endpoint.

Prevent access to storageaccount1 from being interrupted.

Which four actions should you perform in sequence?

To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

Select and Place:

microsoft az-700 exam questions q9

Correct Answer:

microsoft az-700 exam questions q9-1

Explanation:

168.63.129.16 is the IP address of Azure DNS which hosts Azure Private DNS zones.

It is only accessible from within a VNet which is why we need to forward on-prem DNS requests to the VM running DNS in the VNet.

The VM will then forward the request to Azure DNS for the IP of the storage account private endpoint.

Reference: https://docs.microsoft.com/en-us/azure/storage/common/storage-private-endpoints

QUESTION 10

You have an Azure subscription that contains the public IP addresses shown in the following table.

microsoft az-700 exam questions q10

You plan to deploy a NAT gateway named NAT1.

Which public IP addresses can be used as the public IP address for NAT1?

A. IP3 only

B. IP5 only

C. IP2 and IP4 only

D. IP1, IP3 and IP5 only

E. IP3 and IP5 only

Explanation:

Only static IPv4 addresses in the Standard SKU are supported. IPv6 doesn\\’t support NAT.

Reference:
https://docs.microsoft.com/en-us/azure/virtual-network/nat-gateway/nat-overview

QUESTION 11

You plan to configure BGP for a Site-to-Site VPN connection between a datacenter and Azure.

Which two Azure resources should you configure?

Each correct answer presents a part of the solution. (Choose two.)

NOTE: Each correct selection is worth one point.

A. a virtual network gateway

B. Azure Application Gateway

C. Azure Firewall

D. a local network gateway

E. Azure Front Door

Reference: https://docs.microsoft.com/en-us/azure/vpn-gateway/bgp-howto

QUESTION 12

You have the Azure environment shown in the exhibit.

microsoft az-700 exam questions q12

VM1 is a virtual machine that has an instance-level public IP address (ILPIP).

Basic Load Balancer uses a public IP address. VM1 and VM2 are in the backend pool.

NAT Gateway uses a public IP address named IP3 that is associated to SubnetA.

VNet1 has a virtual network gateway that has a public IP address named IP4.

When initiating outbound traffic to the internet from VM1, which public address is used?

A. IP1

B. IP2

C. IP3

D. IP4

QUESTION 13

HOTSPOT
You have an Azure subscription that contains the virtual machines shown in the following table.

microsoft az-700 exam questions q13

Subnet1 and Subnet2 are associated to a network security group (NSG) named NSG1 that has the following outbound rule: Priority: 100 Port: Any Protocol: Any Source: Any Destination: Storage Action: Deny You create a private endpoint that has the following settings: Name: Private1 Resource type: Microsoft.

Storage/storageAccounts Resource: storage1 Target sub-resource: blob Virtual network: Vnet1 Subnet: Subnet1 For each of the following statements, select Yes of the statement is true.

Otherwise, select No. NOTE: Each correct selection is worth one point.

Hot Area:

microsoft az-700 exam questions q13-1

Correct Answer:

microsoft az-700 exam questions q13-2

Reference: https://docs.microsoft.com/en-us/azure/private-link/disable-private-endpoint-network-policy

Compare results:

Q1Q2Q3Q4Q5Q6Q7Q8Q9Q10Q11Q12Q13
CACIMAGEEIMAGEIMAGEIMAGEIMAGEAADAIMAGE

PS. Microsoft AZ-700 dumps PDF

Google Drive: https://drive.google.com/file/d/1DTZ5QcmrjD76CbO5Vj8QQy3lYOXP7pvP/view?usp=sharing

All: I share some thoughts and experiences. Passing exams requires study and constant practice, leads4pass AZ-700 dumps with both PDF and VCE modes help you win easily https://www.leads4pass.com/az-700.html.

Thanks, everyone for reading! Like, please bookmark and share!

Author