Which two outbound network security group (NSG) rules should you create?

AZ-700 V5 0 Comments

You have an Azure virtual network named Vnet1.

You need to ensure that the virtual machines in Vnet1 can access only the Azure SQL resources in the East US Azure region. The virtual machines must be prevented from accessing any Azure Storage

resources.

Which two outbound network security group (NSG) rules should you create? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.
A . an allow rule that has the IP address range of Vnet1 as the source and destination of Sq1.EastUS
B . a deny rule that has a source of VirtualNetwork and a destination of Sq1
C . a deny rule that has a source of VirtualNetwork and a destination of 168.63.129.0/24
D . a deny rule that has the IP address range of Vnet1 as the source and destination of Storage

Answer: C, D

Explanation:

Reference: https://docs.microsoft.com/en-us/azure/virtual-network/service-tags-overview

Latest AZ-700 Dumps Valid Version with 59 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download AZ-700 PDF     AZ-700 Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments