AZ-304 Exam QuestionsBrowse all questions from this exam
Go to Exam

AZ-304 Exam - Question 164

You use Azure virtual machines to run a custom application that uses an Azure SQL Database instance on the back end.

The IT department at your company recently enabled forced tunneling.

Since the configuration change, developers have noticed degraded performance when they access the database from the Azure virtual machine.

You need to recommend a solution to minimize latency when accessing the database. The solution must minimize costs.

What should you include in the recommendation?

Show Answer
Correct Answer: A

To minimize latency when accessing the database from the Azure virtual machine while also minimizing costs, the best recommendation would be to utilize Virtual Network (VNET) service endpoints. Enabling VNET service endpoints allows Azure resources, such as Azure SQL Database, to communicate directly with each other over the Azure backbone network without needing to route traffic through the internet or other networks. This reduces latency significantly, which addresses the performance degradation noticed after forced tunneling was enabled.

Discussion

7 comments
Sign in to comment
Pushkar00
Dec 13, 2020

Correct answer - vnet end point will reduce latency

yyuryyucicuryyforme
Jan 19, 2022

You can see the effects of forced tunnelling (added default route 0.0.0.0/0 via on-Vnet gateway) and subsequent adding the Vnet service endpoint (more specific service-specific route) by viewing effective routes on the VM network interface in the Azure portal (i.e. not inside the VM). https://docs.microsoft.com/en-us/azure/virtual-network/manage-route-table#view-effective-routes

MadEgg
Jan 21, 2021

Correct answer More information: https://docs.microsoft.com/de-de/azure/app-service/environment/forced-tunnel-support#configure-your-ase-with-service-endpoints

claudio82
Apr 16, 2021

Service endpoint use backbone, so its the fastest way to comunicate azure resources

leo_az300
Sep 23, 2021

correct. The degrade performance could caused by forced-tunneling impacting service traffic. Enable Service endpoint can resolve this issue. Enable Service Endpoints with Azure SQL and Azure Storage with your ASE subnet. After this step is completed, you can then configure your VNet with forced tunneling. Keeping traffic on the Azure backbone network allows you to continue auditing and monitoring outbound Internet traffic from your virtual networks, through forced-tunneling, without impacting service traffic.

syu31svc
Oct 4, 2021

"forced tunnelling" Only A is correct

Dpejic
Dec 23, 2021

Appere on exam 23-dec-2021

Gautam1985
Aug 30, 2021

correct