AZ-303 Exam - Question 329

Question

HOTSPOT -You need to meet the connection requirements for the New York office. What should you do? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point. Hot Area:.

Examice · Accepted Answer

Box 1: Create a virtual network gateway and a local network gateway.

Azure VPN gateway. The VPN gateway service enables you to connect the VNet to the on-premises network through a VPN appliance. For more information, see

Connect an on-premises network to a Microsoft Azure virtual network. The VPN gateway includes the following elements:

✑ Virtual network gateway. A resource that provides a virtual VPN appliance for the VNet. It is responsible for routing traffic from the on-premises network to the

VNet.

✑ Local network gateway. An abstraction of the on-premises VPN appliance. Network traffic from the cloud application to the on-premises network is routed through this gateway.

✑ Connection. The connection has properties that specify the connection type (IPSec) and the key shared with the on-premises VPN appliance to encrypt traffic.

✑ Gateway subnet. The virtual network gateway is held in its own subnet, which is subject to various requirements, described in the Recommendations section below.

Box 2: Configure a site-to-site VPN connection

On premises create a site-to-site connection for the virtual network gateway and the local network gateway.

Scenario: Connect the New York office to VNet1 over the Internet by using an encrypted connection.

Incorrect Answers:

Azure ExpressRoute: Established between your network and Azure, through an ExpressRoute partner. This connection is private. Traffic does not go over the internet.

References:

https://docs.microsoft.com/en-us/azure/architecture/reference-architectures/hybrid-networking/vpn

Stephan99 · Answer

correct answers.
https://docs.microsoft.com/de-de/learn/modules/connect-on-premises-network-with-vpn-gateway/3-exercise-prepare-azure-and-on-premises-vnets-using-azure-cli-commands

Stevezzc · Answer

given answer is correct.

dadageer · Answer

Correct Answers!

syu31svc · Answer

Connect the New York office to VNet1 over the Internet by using an encrypted connection.

https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-howto-site-to-site-classic-portal

A Site-to-Site VPN gateway connection is used to connect your on-premises network to an Azure virtual network over an IPsec/IKE (IKEv1 or IKEv2) VPN tunnel.

https://docs.microsoft.com/en-us/azure/vpn-gateway/tutorial-site-to-site-portal

In this tutorial, you learn how to:

Create a virtual network
Create a VPN gateway
Create a local network gateway
Create a VPN connection
Verify the connection
Connect to a virtual machine

Answer is correct

MichaelCWWong · Answer

Answer #1 should be "Create a virtual network gateway only", local network gateway couldn't be created on Azure portal but at on-premise environment.

nbaset · Answer

This case study seems to be incomplete in the az303 section. refer to this link for other questions : https://www.examtopics.com/exams/microsoft/az-103/view/36/

Yiannisthe7th · Answer

Answer is correct. Since one of the requirements are: "Connect the New York office to VNet1 over the Internet by using an encrypted connection." Accordingly, the connection is VPN where Virtual networking gateway, local gateway and Site to site connection is needed.

Sizar · Answer

They didn't mention that in the New york office there is a VPN gateway. 
"Contoso has data centers in the Montreal and Seattle offices. Each data center has a firewall that can be configured as a VPN device."

edmacoar123 · Answer

Today 19/11/21. No use case of this help platform appeared in my exam. Score 860.

AZ-303 Exam - Question 329

Discussion