Practice Test 2 | Microsoft Azure Security Technologies | AZ-500 | Dumps | Mock Test
View Case Study
You are trying to see the impact of application security groups defined. Would you be able to ping the private IP address of whizlabvm4 from whizlabvm1?
A. Yes
B. No
Answer – B
To execute a ping command, we need to enable ICMP protocol which is missing.
Here WhizlabVM1 is attached with NSG whizlabnsg2 at subnetA
and WhizlabVM4 is attached with NSG Whizlabnsg3 at subnetC
since ping need to be executed at whizlabvm1 like
ping WhizlabVM4
hence we need to see outbound rule of NSG attached at subnetA
Which is ok with outbound rule priority 65000
Now check inbound rule of whizlabnsg3
Here inbound rule priority 100 allow to accept traffic from ASG whizlabasg1, which is missing ICMP Protocol.
Following is network diagram
For more information on virtual network security, one can visit the below URL
https://docs.microsoft.com/en-us/azure/virtual-network/security-overview
Comments are closed, but trackbacks and pingbacks are open.