Examice

Exam AZ-104 All QuestionsBrowse all questions from this exam

Go to Exam

Question 136

Your on-premises network contains a VPN gateway.

You have an Azure subscription that contains the resources shown in the following table.

You need to ensure that all the traffic from VM1 to storage1 travels across the Microsoft backbone network.

What should you configure?

Azure AD Application Proxy

private endpoints

a network security group (NSG)

Azure Peering Service

Correct Answer: B

To ensure that all the traffic from VM1 to storage1 travels across the Microsoft backbone network, you should configure private endpoints. A private endpoint is a network interface that uses a private IP address from your virtual network. This network interface connects you privately and securely to a service that is powered by Azure Private Link. By enabling a private endpoint, traffic between VM1 and storage1 will traverse the Microsoft backbone network, avoiding the public internet.

Discussion

Batiste2023Option: B

Correct, that's what private endpoints are for. "A private endpoint is a network interface that uses a private IP address from your virtual network. This network interface connects you privately and securely to a service that's powered by Azure Private Link. By enabling a private endpoint, you're bringing the service into your virtual network." https://learn.microsoft.com/en-us/azure/private-link/private-endpoint-overview

Batiste2023

Ok, the following question seems to complicate things a bit - same scenario, different solution... Here is what MS says about the difference about private endpoints and service endpoints: "What is the difference between Service Endpoints and Private Endpoints? - Private Endpoints grant network access to specific resources behind a given service providing granular segmentation. Traffic can reach the service resource from on premises without using public endpoints. - A Service Endpoint remains a publicly routable IP address. A Private Endpoint is a private IP in the address space of the virtual network where the private endpoint is configured." https://learn.microsoft.com/en-us/azure/private-link/private-link-faq#what-is-the-difference-between-service-endpoints-and-private-endpoints- From what I read here, both service endpoints and private endpoints seem a viable solution to the requirements stated.

testtaker09

was in the exam today 17/06/2024

090200fOption: B

private endpoint

PdutzOption: B

Correct, private endpoint

NavigatorOption: B

B is perfect