X

AZ 801 / MS

  • 5 views
Exam
Microsoft AZ-801
Answer confirmed
Microsoft Learinng Path Questions
Question

How could an administrator use service tags when configuring network security?

Proposed answer
  • They use them to define network access controls on NSGs or on Azure Firewall.
  • They use them to enable the ability to configure network security as a natural extension of an application's structure, allowing them to group VMs and define network security policies based on those groups.
  • They use them to filter egress virtual network traffic to Azure Storage accounts over a service endpoint, and allow data exfiltration to only specific Azure Storage accounts.
Correct answer

They use them to define network access controls on NSGs or on Azure Firewall.

They use service tags in place of specific IP addresses when you create security rules. By specifying the service tag name (for example, AzureBackup) in the appropriate source or destination field of a rule, They deny or allow the traffic for that service.

Related exam questions

AZ-800 / Q15 / T3

You have an Azure virtual machine named Server1 that runs a network management application. Server1 has the following network configurations:

AZ-800 / Q19 / T3

You have an Azure subscription that contains the virtual networks shown in the following table.

AZ-800 / Q27 / T3

You have an Azure subscription that contains a virtual network named VNet1. Vnet1 contains three subnets named Subnet1, Subnet2, and Subnet3.

AZ-800 / Q13 / T4

You need to connect only Server1 to the Azure virtual network.
What should you use?

AZ-800 / Q29 / MS

You have an Azure subscription that contains a virtual network named VNet1 and a virtual machine named VM1. VM1 is connected to VNet1 and has a dynamic private IP configuration.

AZ-800 / Q31 / MS

You have an Azure virtual network named Vnet1 that contains a subnet named Subnet1.

AZ-800 / Q32 / MS

You have an Azure subscription that contains a virtual machine named VM1 and virtual network named VNet1 that has a single subnet named Subnet1. VM1 is connected to Subnet1.

AZ-800 / Q38 / MS

You have an Azure subscription that contains a virtual network named VNet1 and a subnet named Subnet1. Subnet1 is configured to use an IP address range of 192.168.0.0/24.

AZ-800 / Q40 / MS

You have an Azure subscription.

You need to deploy an Azure Virtual WAN.

Which three resources should you create? Each correct answer presents part of the solution.

AZ-800 / Q41 / MS

Your on-premises network connects to the internet.

You have an Azure subscription that contains a virtual network named VNet1.