Verified Microsoft AZ-700 Exam Dumps for Last-Minute Exam Prep

Question No: 1

MultipleChoice

You have an Azure subscription that contains an Azure Front Door named FD1. FD1 is configured as shown in the following exhibit.

You need to enable Azure Private Link for FD1.

What should you do first?

Options

ACreate an origin group.

BAdd an endpoint.

CChange Pricing Tier to Azure Front Door Premium.

DCreate a custom route.

Question No: 2

OrderList

You need to implement outbound connectivity for VMScaleSet1. The solution must meet the virtual networking requirements and the business requirements.

Which three actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

Question No: 3

MultipleChoice

You have an Azure subscription that contains a user named Admin1 and a resource group named RG1.

RG1 contains an Azure Network Watcher instance named NW1.

You need to ensure that Admin1 can place a lock on NW1. The solution must use the principle of least privilege.

Which role should you assign to Admin1?

Options

AUser Access Administrator

BNetwork Contributor

CResource Policy Contributor

DMonitoring Contributor

Question No: 4

MultipleChoice

Task 2

You need to create an Azure Firewall instance named FW1 that meets the following requirements:

* Has an IP address from the address range of 10.1.255.0/24

* Uses a new Premium firewall policy named FW-pohcy1

* Routes traffic directly to the internet

Options

ASee the Explanationbelow for step by step in structions

Question No: 5

MultipleChoice

Task 3

You plan to implement an Azure application gateway in the East US Azure region. The application gateway will have Web Application Firewall (WAF) enabled.

You need to create a policy that can be linked to the planned application gateway. The policy must block connections from IP addresses in the 131.107.150.0/24 range. You do NOT need to provision the application gateway to complete this task.

Options

ASee the Explanationbelow for step by step in structions

Question No: 6

MultipleChoice

Task 4

You need to ensure that connections to the storage34280945 storage account can be made by using an IP address in the 10.1.1.0/24 range and the name storage34280945.pnvatelinlcblob.core.windows.net.

Options

ASee the Explanationbelow for step by step in structions

Question No: 7

MultipleChoice

Task 5

You need to ensure that requests for wwwjelecloud.com from any of your Azure virtual networks resolve to frontdoor1.azurefd.net.

Options

ASee the Explanationbelow for step by step in structions

Question No: 8

MultipleChoice

Task 6

You need to ensure that all hosts deployed to subnet3-2 connect to the internet by using the same static public IP address. The solution must minimize administrative effort when adding hosts to the subnet.

Options

ASee the Explanationbelow for step by step in structions

Question No: 9

MultipleChoice

Task 7

You need to ensure that hosts on VNET2 can access hosts on both VNET1 and VNET3. The solution must prevent hosts on VNET1 and VNET3 from communicating through VNET2.

Options

ASee the Explanationbelow for step by step in structions

Question No: 10

MultipleChoice

Task 1

You plan to deploy a firewall to subnetl-2. The firewall will have an IP address of 10.1.2.4.

You need to ensure that traffic from subnetl-1 to the IP address range of 192.168.10.0/24 is routed through the firewall that will be deployed to subnetl-2. The solution must be achieved without using dynamic routing protocols.

Options

ASee the Explanationbelow for step by step in structions

Question No: 11

Hotspot

You have an Azure subscription that contains an Azure application gateway named AG1 and two Azure App Service apps named App1 and App2 that have the following configurations:

* Both apps are accessible by using HTTP and HTTPS.

* HTTP host headers are used to route requests to the appropriate apps.

* Both apps are hosted in a single App Service Environment in the West Europe Azure region.

You need to publish the apps by using AG1. The solution must ensure that AG1 provides both HTTP and HTTPS access.

What is the minimum number of resources required for AG1? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Topic 4, Labs / Tasks

Question No: 12

Hotspot

You have an Azure subscription that contains multiple virtual machine scale sets and multiple Azure load balancers. The load balancers balance traffic across the scale sets.

You plan to deploy Azure Front Door to load balance traffic across the load balancers.

You need to identify which Front Door SKU to configure, and what to use to route the traffic to the load balancers. The solution must minimize costs.

What should you identify? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Topic 4, Labs / Tasks

Question No: 13

MultipleChoice

Task 9

You need to ensure that subnet4-3 can accommodate 507 hosts.

Options

ASee the Explanationbelow for step by step in structions

Question No: 14

MultipleChoice

You are configuring two network virtual appliances (NVAs) in an Azure virtual network. The NVAs will be used to inspect all the traffic within the virtual network.

You need to provide high availability for the NVAs. The solution must minimize administrative effort. What should you include in the solution?

Options

AAzure Standard Load Balancer

BAzure Traffic Manager

CAzure Application Gateway

DAzure Front Door

Question No: 15

Hotspot

You need to recommend a configuration for the ExpressRoute connection from the Boston datacenter. The solution must meet the hybrid networking requirements and business requirements.

What should you recommend? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Gateway SKU

https://docs.microsoft.com/en-us/azure/expressroute/expressroute-about-virtual-network-gateways

Question No: 16

MultipleChoice

Task 11

You are preparing to connect your on-premises network to VNET4 by using a Site-to-Site VPN. The on-premises endpoint of the VPN will be created on a firewall named Firewall 1.

The on-premises network has the following configurations:

Internal address range: 10.10.0.0/16.

Firewall 1 internal IP address: 10.10.1.1.

Firewall1 public IP address: 131.107.50.60.

BGP is NOT used.

You need to create the object that will provide the IP addressing configuration of the on-premises network to the Site-to-Site VPN. You do NOT need to create a virtual network gateway to complete this task.

Options

ASee the Explanation below for step by step instructions

Question No: 17

Hotspot

You have an Azure load balancer that has the following configurations:

Name:LB1

Location: East US 2

SKU: Standard

Private IP address: 10.3.0.7

Load balancing rule: rule! (Tcp/80)

Health probe: probe1 (Http:80)

NAT rules; 0 inbound

The backend pool of LB1 has the following configurations:

Name: backend I

Virtual network: Vnet1

Backend pool configuration: NIC

IP version: IPv4

Virtual machines: VM1.VM2. VM3:

You have an Azure virtual machine named VM4 that has the following network configurations:

Network interface: vm49Sl

Virtual network/subnet: Vnet3/Subnet3

NIC private IP address: 10.4.0.4

Accelerated networking: Enabled

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Question No: 18

Hotspot

You have two Azure virtual networks named Vnet1 and Vnet2 in an Azure region that has three availability zones.

You deploy 12 virtual machines to each virtual network, deploying four virtual machines per zone. The virtual machines in Vnet1 host an app named App1. The virtual machines in Vnet2 host an app named App2.

You plan to use Azure Virtual Network NAT to implement outbound connectivity for App1 and App2.

You need to identify the minimum number of subnets and Virtual Network NAT instances required to meet the following requirements:

A failure of two zones must NOT affect the availability of either App1 or App2.

A failure of two zones must NOT affect the outbound connectivity of either App1 or App2.

What should you identify? To answer, select the appropriate options in the answer are

a.

NOTE: Each correct selection is worth one point.

Question No: 19

MultipleChoice

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You have an Azure subscription that contains the following resources:

A virtual network named Vnet1

A subnet named Subnet1 in Vnet1

A virtual machine named VM1 that connects to Subnet1

Three storage accounts named storage1, storage2, and storage3

You need to ensure that VM1 can access storage1. VM1 must be prevented from accessing any other storage accounts.

Solution: You configure the firewall on storage1 to only accept connections from Vnet1.

Does this meet the goal?

Options

AYes

BNo

Question No: 20

Hotspot

You configure a route table named RT1 that has the routes shown in the following table.

You have an Azure virtual network named Vnet1 that has the subnets shown in the following table.

You have the resources shown in the following table.

Vnet1 connects to an ExpressRoute circuit. The on-premises router advertises the following routes:

0.0.0.0/0

10.0.0.0/16

For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.

Free Microsoft AZ-700 Exam Dumps May 2026