Practice Test 2 | Microsoft Azure Security Technologies | AZ-500 | Dumps | Mock Test

Question 48

View Case Study
You are trying to see the impact of application security groups defined. Would you be able to ping the private IP address of whizlabvm4 from whizlabvm1?

A. Yes
B. No

Answer

Answer – B

To execute a ping command, we need to enable ICMP protocol which is missing.

Here WhizlabVM1 is attached with NSG whizlabnsg2 at subnetA

and WhizlabVM4 is attached with NSG Whizlabnsg3 at subnetC

since ping need to be executed at whizlabvm1 like

ping WhizlabVM4

hence we need to see outbound rule of NSG attached at subnetA

Which is ok with outbound rule priority 65000

Now check inbound rule of whizlabnsg3

Here inbound rule priority 100 allow to accept traffic from ASG whizlabasg1, which is missing ICMP Protocol.

Following is network diagram

For more information on virtual network security, one can visit the below URL

https://docs.microsoft.com/en-us/azure/virtual-network/security-overview

Pages: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55

AZ-500

Practice Test 2 | Microsoft Azure Security Technologies | AZ-500 | Dumps | Mock Test

Question 48

Answer

Ads Blocker Detected!!!