Your company has an office in Seattle.
You have an Azure subscription that contains a virtual network named VNET1.
You create a site-to-site VPN between the Seattle office and VNET1.
VNET1 contains the subnets shown in the following table.
You need to route all Internet-bound traffic from Subnet1 to the Seattle office.
What should you create?
To route all Internet-bound traffic from Subnet1 to the Seattle office, a custom route is required. This custom route should be for Subnet1 using the virtual network gateway as the next hop. The virtual network gateway is responsible for handling traffic that needs to be routed through the site-to-site VPN connection, which includes Internet-bound traffic that is to be directed back through the Seattle office. This solution ensures that traffic from Subnet1 is properly forwarded through the VPN tunnel established between VNET1 and the Seattle office.
Correct. Duplicate question: topic 1 question 47. https://www.examtopics.com/exams/microsoft/az-303/view/10/
Yes, duplicate question, but , careful, choices are not in the same order! Look for Subnet1 and Virtual Network Gateway combination
Verified
Verified
In my view, it should be C. Local Network Gateway represents the on-premise VPN device and that should be given as a Next Hope in user defined route for the internet. https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-create-site-to-site-rm-powershell#:~:text=The%20local%20network%20gateway%20(LNG,you%20will%20create%20a%20connection.
No, from Subnet1, next hop is the Virtual Network Gateway. https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-forced-tunneling-rm
Given answer is correct, please check.. https://docs.microsoft.com/de-de/azure/vpn-gateway/vpn-gateway-forced-tunneling-rm
Thankyou
Correct See: https://docs.microsoft.com/de-de/azure/vpn-gateway/vpn-gateway-forced-tunneling-rm
26-June-21, Passed the exam. Correct Answer
Correct Forced tunneling on the gateway should have been configured. but from subnet 1, the next hop should be vpn gateway
Can someone explain this one to me?
Answer D. they basically want all their internet traffic leaving the vm to got through the on prem Seattle DC. hence option D will make sure the UDR taking preference will force all traffic to the gateway as the next hop.
See following link: https://docs.microsoft.com/de-de/learn/modules/connect-on-premises-network-with-vpn-gateway/3-exercise-prepare-azure-and-on-premises-vnets-using-azure-cli-commands Additionally a Subnet1 is used in the exam question. In oder to have connection to the Seattle office you must route the Subnet1 to the Virtual Network Gateway.
yep C is the answer