What should you do?

AZ-720 V1 1 Comment

A company has an ExpressRoute gateway between their on-premises site and Azure. The ExpressRoute gateway is on a virtual network named VNet1. The company enables FastPath on the gateway. You associate a network security group (NSG) with all of the subnets.

Users report issues connecting to VM1 from the on-premises environment. VM1 is on a virtual network named VNet2. Virtual network peering is enabled between VNet1 and VNet2.

You create a flow log named FlowLog1 and enable it on the NSG associated with the gateway subnet.

You discover that FlowLog1 is not reporting outbound flow traffic.

You need to resolve the issue with FlowLog1.

What should you do?
A . Enable FlowLog1 in a network security group associated with the subnet of VM1.
B. Configure the FlowTimeoutInMinutes property on VNet2 to a non-null value.
C. Configure the FlowTimeoutInMinutes property on VNet1 to a non-null value.
D. Configure FlowLog1 for version 2.

Answer: A

Explanation:

According to 2, when FastPath is enabled on an ExpressRoute gateway, network traffic between your on-premises network and your virtual network bypasses the gateway and goes directly to virtual machines in the virtual network. Therefore, if you want to capture outbound flow traffic from VM1, you need to enable flow logging on an NSG associated with the subnet of VM1.

Latest AZ-720 Dumps Valid Version with 81 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download AZ-720 PDF     AZ-720 Questions Online Training
Subscribe
Notify of
guest
1 Comment
Inline Feedbacks
View all comments
HENRY DSOUZA
HENRY DSOUZA
9 months ago

Correct and good explanation.

0
Reply