Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Microsoft AZ-700 Exam - Topic 5 Question 72 Discussion

SIMULATIONTask 1You plan to deploy a firewall to subnetl-2. The firewall will have an IP address of 10.1.2.4.You need to ensure that traffic from subnetl-1 to the IP address range of 192.168.10.0/24 is routed through the firewall that will be deployed to subnetl-2. The solution must be achieved without using dynamic routing protocols.
A) See the Explanation below for step by step instructions

Microsoft AZ-700 Exam - Topic 5 Question 72 Discussion

Actual exam question for Microsoft's AZ-700 exam
Question #: 72
Topic #: 5
[All AZ-700 Questions]

SIMULATION

Task 1

You plan to deploy a firewall to subnetl-2. The firewall will have an IP address of 10.1.2.4.

You need to ensure that traffic from subnetl-1 to the IP address range of 192.168.10.0/24 is routed through the firewall that will be deployed to subnetl-2. The solution must be achieved without using dynamic routing protocols.

Show Suggested Answer Hide Answer
Suggested Answer: A

To deploy a firewall to subnetl-2, you need to create a network virtual appliance (NVA) in the same virtual network as subnetl-2.An NVA is a virtual machine that performs network functions, such as firewall, routing, or load balancing1.

To create an NVA, you need to create a virtual machine in the Azure portal and select an image that has the firewall software installed.You can choose from the Azure Marketplace or upload your own image2.

To assign the IP address of 10.1.2.4 to the NVA, you need to create a static private IP address for the network interface of the virtual machine.You can do this in the IP configurations settings of the network interface3.

To ensure that traffic from subnetl-1 to the IP address range of 192.168.10.0/24 is routed through the NVA, you need to create a user-defined route (UDR) table and associate it with subnetl-1.A UDR table allows you to override the default routing behavior of Azure and specify custom routes for your subnets4.

To create a UDR table, you need to go to the Route tables service in the Azure portal and select + Create.You can give a name and a resource group for the route table5.

To create a custom route, you need to select Routes in the route table and select + Add.You can enter the following information for the route5:

Destination: 192.168.10.0/24

Next hop type: Virtual appliance

Next hop address: 10.1.2.4

To associate the route table with subnetl-1, you need to select Subnets in the route table and select + Associate.You can select the virtual network and subnet that you want to associate with the route table5.


by Caprice at Sep 16, 2024, 07:00 PM

Limited Time Offer

25%

Off

Get Premium AZ-700 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Stefany
6 months ago
I think we might need to double-check the subnet masks too.
upvoted 0 times
...
Stefany
6 months ago
Sounds good to me, straightforward approach!
upvoted 0 times
...
Lettie
7 months ago
Wait, are we sure about the IP range? 192.168.10.0/24 seems off.
upvoted 0 times
...
Kimberlie
7 months ago
Totally agree, no dynamic protocols means manual routing.
upvoted 0 times
...
Weldon
7 months ago
Just a heads up, static routes will be needed for this setup.
upvoted 0 times
...
Melissia
7 months ago
I definitely remember that we can't use dynamic routing here, so static routes are essential. I just hope I can recall the correct commands during the exam!
upvoted 0 times
...
Halina
8 months ago
This seems familiar! I recall we discussed how to handle traffic without dynamic routing, but I can't quite remember if we need to adjust the default gateway settings as well.
upvoted 0 times
...
Raul
8 months ago
I think we need to set up static routes on subnetl-1 to point to the firewall's IP address, but I’m a bit confused about the subnet mask.
upvoted 0 times
...
Lemuel
8 months ago
I remember we practiced a similar question about routing traffic through a firewall, but I’m not sure about the exact steps to configure the static routes.
upvoted 0 times
...
Sarina
8 months ago
This seems straightforward enough. I bet I can set up the static routes on the routers to redirect the traffic through the firewall. Just need to make sure I have the right subnet and IP details.
upvoted 0 times
...
Aleisha
8 months ago
I'm a bit confused on how to approach this without dynamic routing. Guess I'll need to review my static routing knowledge and see if I can come up with a solution.
upvoted 0 times
...
Olene
8 months ago
Alright, let's see. I'm thinking we'll need to configure static routes on the routers to achieve this. Might take a bit of planning, but I think I can figure it out.
upvoted 0 times
...
Armanda
8 months ago
Okay, so we need to route traffic from subnet1-1 to the 192.168.10.0/24 range through the firewall on subnet1-2. And we can't use dynamic routing protocols. Interesting challenge.
upvoted 0 times
...
Mary
8 months ago
Hmm, this looks like a tricky one. I'll need to think through the network topology and routing requirements carefully.
upvoted 0 times
...
Carolynn
8 months ago
Hmm, this is tricky. I think the key is to identify the parts of Security Policy A that are specific to Service A and separate those out into a new policy that can be shared between Service A and the perimeter service. That way, the perimeter service can have its own tailored policy.
upvoted 0 times
...
Jimmie
2 years ago
That makes sense. We can manually add the routes to ensure traffic goes through the firewall.
upvoted 0 times
...
Zita
2 years ago
All this talk of firewalls and subnets is making me hungry. Anyone else up for a network admin's lunch special - pizza and Mountain Dew?
upvoted 0 times
Felix
2 years ago
Pizza and Mountain Dew? Sounds like a plan! I'm in for the network admin's lunch special.
upvoted 0 times
...
Harrison
2 years ago
I could go for some pizza right now. Count me in for the lunch special.
upvoted 0 times
...
Luke
2 years ago
I'm in for the network admin's lunch special! Pizza and Mountain Dew sounds perfect.
upvoted 0 times
...
...
Ilene
2 years ago
I think we can use static routes to achieve this. We just need to configure the routes on the routers.
upvoted 0 times
...
Jimmie
2 years ago
I'm not sure how to route traffic without using dynamic routing protocols.
upvoted 0 times
...
Hyman
2 years ago
I bet the firewall's default gateway is going to be the key to this one. Time to brush up on my subnet math!
upvoted 0 times
Dominic
2 years ago
User 4: Once you set up the static route, traffic from subnetl-1 to 192.168.10.0/24 will go through the firewall.
upvoted 0 times
...
Aliza
2 years ago
Make sure to configure the static route on the router in subnetl-1 to send traffic to the firewall.
upvoted 0 times
...
Norah
2 years ago
Yes, the key is setting the firewall's IP address as the default gateway for subnetl-1.
upvoted 0 times
...
Vashti
2 years ago
Have you figured out how to route traffic from subnetl-1 to subnetl-2 through the firewall?
upvoted 0 times
...
...
Emiko
2 years ago
Wait, is this a trick question? Surely there's a catch somewhere...
upvoted 0 times
Naomi
2 years ago
C) Test the connectivity to verify that traffic from subnetl-1 is being routed through the firewall in subnetl-2.
upvoted 0 times
...
Cherri
2 years ago
B) Ensure that the firewall in subnetl-2 has a rule to allow traffic from subnetl-1 to the IP address range of 192.168.10.0/24.
upvoted 0 times
...
Yvonne
2 years ago
A) Configure a static route on the router in subnetl-1 to route traffic destined for 192.168.10.0/24 through the IP address of the firewall in subnetl-2.
upvoted 0 times
...
...
Billy
2 years ago
Gotta love those static routes! No need for any fancy dynamic protocols here.
upvoted 0 times
...
Phillip
2 years ago
This looks straightforward. I'd set up a static route on subnet1-1 pointing to the firewall's IP address for the 192.168.10.0/24 network.
upvoted 0 times
Paz
2 years ago
No problem, happy to assist. Let me know if you need any more help with the configuration.
upvoted 0 times
...
Christa
2 years ago
Got it, I'll configure the static route as you suggested. Thanks for the help!
upvoted 0 times
...
Leota
2 years ago
Make sure to point it to the firewall's IP address for the 192.168.10.0/24 network.
upvoted 0 times
...
Wilford
2 years ago
That's correct! Setting up a static route on subnet1-1 is the way to go.
upvoted 0 times
...
...

Save Cancel