Design and implement core networking infrastructure Questions
Practice questions for Design and implement core networking infrastructure topic in Microsoft Certified: Azure Network Engineer Associate. 56 questions covering this domain.
A hub virtual network contains BGP-capable SD-WAN and security appliances. The network team wants Azure routing to update automatically as those appli...
What is the recommended Azure service for explicit outbound internet connectivity from a subnet?
A subnet uses an Azure NAT Gateway for outbound internet access. An engineer then adds a user-defined route for 0.0.0.0/0 that points to a virtual app...
A virtual machine can't reach a destination, and the engineer needs to know whether a packet is being allowed or denied and which security rule is res...
A company wants fully managed hybrid DNS resolution between Azure virtual networks and on-premises networks without deploying custom DNS virtual machi...
An enterprise wants on-premises DNS servers to resolve records in Azure Private DNS zones. Which Azure DNS Private Resolver component should the on-pr...
A company wants all private virtual machines in a subnet to reach the internet by using a predictable contiguous set of public source IP addresses. Wh...
A team needs Azure workloads to forward queries for an on-premises DNS namespace to corporate DNS servers. What should they configure in Azure DNS Pri...
A network engineer needs ongoing end-to-end monitoring between Azure and hybrid endpoints to understand latency and reachability trends. Which Network...
Which Azure service automatically exchanges routes between BGP-capable network virtual appliances and Azure virtual networks?
Which Azure Network Watcher diagnostic tool shows the next hop type, next hop IP address, and route table ID for traffic to a destination IP?
A subscription contains many public IP resources inside one virtual network. The security team wants all of them protected by an auto-tuned DDoS plan ...
A team tries to place an Azure DNS Private Resolver outbound endpoint in a subnet that already hosts other resources. The deployment fails. What must ...
An administrator wants to test right now whether a virtual machine can reach an external FQDN and see the result immediately, not over time. Which Net...
An Azure DNS Private Resolver inbound endpoint is deployed. The team wants on-prem servers to forward only the contoso.internal namespace to it, leavi...
Which feature must be enabled on a hub VNet peering so that gateway transit lets spokes use the hub's VPN/ER gateway?
Which type of VNet peering is required to peer two virtual networks in different Azure regions?
An AVNM security admin rule with action Always Allow is applied to a VNet that also has an NSG denying the same traffic. What is the result?
A team peers two VNets with overlapping IP ranges resolved through an NVA performing NAT. Which Azure feature is required for the spokes' return traff...
Which monitoring data captures connection-level allow/deny decisions for traffic crossing a subnet's NSG and is required input for Traffic Analytics?
Sign in to see all 56 questions
Create a free account to browse all questions — completely free during our launch phase.