Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Microsoft AZ-800 Exam - Topic 3 Question 50 Discussion

Actual exam question for Microsoft's AZ-800 exam
Question #: 50
Topic #: 3
[All AZ-800 Questions]

You have an on-premises server named Server1 that runs Windows Server. Server1 contains an app named App1 and a firewall named Firewall1.

You have an Azure subscription.

Internal users connect to App1 by using WebSockets.

You need to make App1 available to users on the internet. The solution must minimize the number of inbound ports open on Firewall 1.

What should you include in the solution?

Show Suggested Answer Hide Answer
Suggested Answer: A

To ensure that all computers in the domain use DNSSEC to resolve names in the adatum.com zone, you'll need to configure both the DNS servers and the client computers. Here's how you can do it:

Step 1: Sign the adatum.com Zone First, you need to sign the adatum.com DNS zone. This can be done using the DNS Manager or PowerShell. Here's a PowerShell example:

Add-DnsServerSigningKey -ZoneName 'adatum.com' -CryptoAlgorithm RsaSha256

Set-DnsServerDnsSecZoneSetting -ZoneName 'adatum.com' -DenialOfExistence NSEC3 -NSEC3Parameters 1,0,10,''

This will add a signing key and configure DNSSEC for the zone with NSEC3 parameters.

Step 2: Configure DNS Servers Ensure that your DNS servers are configured to support DNSSEC. This includes setting up trust anchors for the zones that you want to validate and configuring the DNS servers to provide DNSSEC validation for DNS queries.

Step 3: Configure DNS Clients For DNSSEC validation to occur on the client side, the client computers must be configured to trust the DNS server's validation process. This typically involves configuring the client's DNS settings to point to a DNS server that supports DNSSEC.

Step 4: Validate Configuration You can validate that DNSSEC is working correctly by using tools like nslookup or dig to query DNS records and check for the presence of DNSSEC signatures in the responses.

Note: The exact steps may vary depending on your environment and the version of Windows Server you are using. Ensure that you have the appropriate administrative rights to make these changes and that you test the configuration in a controlled environment before deploying it domain-wide12.

By following these steps, you should be able to ensure that all computers in your domain use DNSSEC to resolve names in the adatum.com zone.


by Carlton at Jul 06, 2024, 07:11 AM

Limited Time Offer

25%

Off

Get Premium AZ-800 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Janna
5 months ago
Surprised no one mentioned Web Application Proxy!
upvoted 0 times
...
Rolande
5 months ago
Azure Application Gateway could work too, but it's more complex.
upvoted 0 times
...
Michal
5 months ago
Wait, isn't ARR outdated for this kind of setup?
upvoted 0 times
...
Loreta
5 months ago
Definitely agree, it keeps the ports minimal!
upvoted 0 times
...
Jacinta
6 months ago
I think Azure Relay is the best option here.
upvoted 0 times
...
Mireya
6 months ago
I practiced a similar question about ARR, but I don't think it fits this scenario since we need to focus on internet access for App1.
upvoted 0 times
...
Dudley
6 months ago
Web Application Proxy sounds familiar, but I can't recall if it specifically supports WebSockets or if it just acts as a reverse proxy.
upvoted 0 times
...
Lilli
6 months ago
I think Azure Application Gateway could be a good choice since it handles WebSockets, but I need to double-check its port requirements.
upvoted 0 times
...
Simona
6 months ago
I remember studying Azure Relay, but I'm not entirely sure if it's the best option for minimizing open ports.
upvoted 0 times
...
Theola
6 months ago
I'm feeling pretty confident about this one. I think Azure Relay might be the best option to meet the requirements.
upvoted 0 times
...
Lina
6 months ago
Okay, I think I've got a strategy here. I'll focus on the options that can handle WebSockets and see which one can do that while also minimizing the open ports.
upvoted 0 times
...
Vanesa
6 months ago
Hmm, I'm a bit confused about the WebSockets requirement and how that might impact the solution. I'll need to research that a bit more.
upvoted 0 times
...
Wilson
6 months ago
This looks like a tricky one. I'll need to think through the options carefully to minimize the number of open ports on the firewall.
upvoted 0 times
...
Alesia
7 months ago
Okay, I've got it. The answer is C - the output will be 2.
upvoted 0 times
...
Ardella
7 months ago
Hmm, I'm not totally sure about this one. I think it might be the need to know principle, but I'm not 100% certain.
upvoted 0 times
...
Yesenia
7 months ago
Establishing freeform data tagging seems less structured, I'm uncertain if that aligns with the goal of data modeling.
upvoted 0 times
...
Lorean
11 months ago
I'd go with Option D. Azure Application Gateway is a powerful and versatile solution that can handle all sorts of traffic, including WebSockets. Plus, it has that cool name - who doesn't love a good 'Gateway'?
upvoted 0 times
...
Charisse
11 months ago
ARR Version 2? That's a blast from the past! I doubt that's the best solution for this modern cloud-based scenario.
upvoted 0 times
Celeste
10 months ago
Azure Relay is not the best choice for making App1 available to users on the internet.
upvoted 0 times
...
Dierdre
10 months ago
Web Application Proxy could also work, but Azure Application Gateway might be more suitable.
upvoted 0 times
...
Sharita
10 months ago
Yeah, Azure Application Gateway can help minimize the number of inbound ports open on Firewall1.
upvoted 0 times
...
Felix
10 months ago
I think Azure Application Gateway would be the best option for this scenario.
upvoted 0 times
...
...
Omega
11 months ago
Web Application Proxy sounds interesting, but I'm not sure it can handle the WebSockets requirement. Maybe it's worth looking into further.
upvoted 0 times
Nobuko
10 months ago
Let's go with Azure Application Gateway then.
upvoted 0 times
...
Rodrigo
10 months ago
I agree, Azure Application Gateway can handle WebSockets and minimize the number of inbound ports open on Firewall1.
upvoted 0 times
...
Juan
10 months ago
I think Azure Application Gateway might be the best option here.
upvoted 0 times
...
Basilia
10 months ago
D) Azure Application Gateway
upvoted 0 times
...
Lettie
10 months ago
C) Azure Relay
upvoted 0 times
...
Evan
10 months ago
B) Web Application Proxy
upvoted 0 times
...
Clare
11 months ago
A) Microsoft Application Request Routing (ARR) Version 2
upvoted 0 times
...
...
Angelo
12 months ago
I'm leaning towards Application Gateway. It can handle the WebSockets traffic and provide a single point of entry for external users, keeping the firewall locked down.
upvoted 0 times
Pamella
10 months ago
I agree, D) Azure Application Gateway sounds like the best solution. It can handle the WebSockets traffic efficiently while keeping the firewall secure.
upvoted 0 times
...
Lino
10 months ago
D) Azure Application Gateway is another option. It can provide SSL termination and load balancing for WebSockets traffic to App1.
upvoted 0 times
...
Fairy
10 months ago
I don't think Azure Relay is the best option in this scenario. Application Gateway seems like a better fit.
upvoted 0 times
...
Leonora
11 months ago
B) Web Application Proxy would be a good choice. It can securely publish App1 to the internet without exposing additional ports.
upvoted 0 times
...
Jannette
11 months ago
What about Azure Relay? Would that work as well?
upvoted 0 times
...
Ryann
11 months ago
I agree, it can handle the WebSockets traffic efficiently.
upvoted 0 times
...
Myra
12 months ago
I think Azure Application Gateway is the way to go.
upvoted 0 times
...
...
Laine
12 months ago
Azure Relay seems like a good choice here. It can expose on-premises resources to the internet without opening up a ton of ports on the firewall.
upvoted 0 times
...
Janey
1 year ago
I'm not sure about Azure Application Gateway. I think we should consider using Azure Relay instead.
upvoted 0 times
...
Alpha
1 year ago
I agree with Lillian. Azure Application Gateway can help minimize the number of inbound ports open on Firewall1.
upvoted 0 times
...
Lillian
1 year ago
I think we should include Azure Application Gateway in the solution.
upvoted 0 times
...

Save Cancel