az-700 358题-566_在线真题试卷与模拟练习_az-700 358题-566_考试宝

更新时间：试题数量：购买人数：提供作者：

有效期：个月

章节介绍：共有个章节

收藏

我的练习

我的错题
(0道)

我的收藏
(0道)

我的斩题
(0道)

我的笔记
(0道)

专项练习

顺序练习 0 / 0

随机练习 自定义设置练习量

题型乱序 按导入顺序练习

模拟考试 仿真模拟

题型练习 按题型分类练习

易错题 精选高频易错题

学习资料 考试学习相关信息

搜索

题库预览

You need to plan the deployment of LBGW1. The solution must support the planned changes. What should you include in the solution? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

You need to configure FD1 to provide user access to app2.proseware.com. The solution must meet the security requirements and the general requirements. What should you do first?

Design and implement application delivery services Testlet 2 Case Study This is a case study. Case studies are not timed separately. You can use as much exam time as you would like to complete each case. However, there may be additional case studies and sections on this exam. You must manage your time to ensure that you are able to complete all questions included on this exam in the time provided. To answer the questions included in a case study, you will need to reference information that is provided in the case study. Case studies might contain exhibits and other resources that provide more information about the scenario that is described in the case study. Each question is independent of the other questions in this case study. At the end of this case study, a review screen will appear. This screen allows you to review your answers and to make changes before you move to the next section of the exam. After you begin a new section, you cannot return to this section. To start the case study To display the first question in this case study, click the Next button. Use the buttons in the left pane to explore the content of the case study before you answer the questions. Clicking these buttons displays information such as business requirements, existing environment, and problem statements. When you are ready to answer a question, click the Question button to return to the question. Overview Litware, Inc. is a financial company that has a main datacenter in Boston and 20 branch offices across the United States. Users have Android, iOS, and Windows 10 devices. Existing Environment Hybrid Environment The on-premises network contains an Active Directory forest named litwareinc.com that syncs to a Microsoft Entra tenant named litwareinc.com by using Microsoft Entra Connect. All the offices connect to a virtual network named Vnet1 by using a Site-to-Site VPN connection. Azure Environment Litware has an Azure subscription named Sub1 that is linked to the litwareinc.com Azure AD tenant. Sub1 contains resources in the East US Azure region as shown in the following table. | Name | Type | Description | |-------------------|-------------------|-----------------------------------------------------------------------------| | Vnet1 | Virtual network | Uses an IP address space of 192.168.0.0/20 | | GatewaySubnet | Virtual network subnet | Located in Vnet1 and uses an IP address space of 192.168.15.128/29 | | VPNGW1 | VPN gateway | Deployed to Vnet1 | | Vnet2 | Virtual network | Uses an IP address space of 192.168.16.0/20 | | SubnetA | Virtual network subnet | Located in Vnet2 and uses an IP address space of 192.168.16.0/24 | | Vnet3 | Virtual network | Uses an IP address space of 192.168.32.0/20 | | cloud.litwareinc.com | Private DNS zone | None | | VMScaleSet1 | Virtual machine scale set | Contains four virtual machines deployed to SubnetA | | VMScaleSet2 | Virtual machine scale set | Contains two virtual machines deployed to SubnetA | | storage1 | Storage account | Has the public endpoint blocked | | storage2 | Storage account | Has the public endpoint blocked | A diagram of the resources in the East US Azure region is shown in the Azure Network Diagram exhibit. There is bidirectional peering between Vnet1 and Vnet2. There is bidirectional peering between Vnet1 and Vnet3. Currently, Vnet2 and Vnet3 cannot communicate directly. Azure Network Diagram（图） Requirements Business Requirements Litware wants to minimize costs whenever possible, as long as all other requirements are met. Virtual Networking Requirements Litware identifies the following virtual networking requirements: - Direct the default route of 0.0.0.0/0 on Vnet2 and Vnet3 to the Boston datacenter over an ExpressRoute circuit. - Ensure that the records in the cloud.litwareinc.com zone can be resolved from the on-premises locations. - Automatically register the DNS names of Azure virtual machines to the cloud.litwareinc.com zone. - Minimize the size of the subnets allocated to platform-managed services. - Allow traffic from VMScaleSet1 to VMScaleSet2 on the TCP port 443 only. Hybrid Networking Requirements Litware identifies the following hybrid networking requirements:【缺少答案，请补充】

You need to configure the default route on Vnet2 and Vnet3. The solution must meet the virtual networking requirements. What should you use to configure the default route?

这是一个案例研究。案例研究不是单独计时的。你可以使用任意多的考试时间来完成每个案例研究。但是，本次考试中可能还有其他案例研究和部分。你必须管理你的时间，以确保能够在规定的时间内完成本次考试中包含的所有问题。要回答案例研究中包含的问题，你需要参考案例研究中提供的信息。案例研究可能包含展品和其他资源，这些资源提供了有关案例研究中描述的场景的更多信息。每个问题都独立于本案例研究中的其他问题。在本案例研究结束时，将出现一个复习屏幕。此屏幕允许你在进入考试的下一部分之前查看你的答案并进行修改。在你开始新的部分后，你无法返回此部分。开始案例研究要显示本案例研究中的第一个问题，请单击“下一步”按钮。使用左侧窗格中的按钮在回答问题之前浏览案例研究的内容。单击这些按钮会显示诸如业务需求、现有环境和问题陈述等信息。当你准备好回答问题时，单击“问题”按钮以返回问题。概述 Contoso, Ltd. 是一家咨询公司，在旧金山有一个主办公室，在达拉斯有一个分支机构。 Contoso 最近购买了一个 Azure 订阅，并正在 Azure 中进行其第一个试点项目。现有环境 Azure 网络基础设施 Contoso 有一个名为 contoso.com 的 Microsoft Entra 租户。 Azure 订阅包含下表中所示的虚拟网络。 | 名称 | 资源组 | IP 地址空间 | 位置 | 已对等互连 | | --- | --- | --- | --- | --- | | Vnet1 | RG1 | 10.1.0.0/16 | 美国西部 | Vnet2、Vnet3 | | Vnet2 | RG1 | 172.16.0.0/16 | 美国中部 | Vnet1、Vnet3、Vnet4 | | Vnet3 | RG2 | 192.168.0.0/16 | 美国中部 | Vnet1、Vnet2 | | Vnet4 | RG2 | 10.10.0.0/16 | 美国西部 | Vnet2 | | Vnet5 | RG3 | 10.20.0.0/16 | 美国东部 | 无 | Vnet1 包含一个名为 GW1 的虚拟网络网关。 Azure 虚拟机 Azure 订阅包含运行 Windows Server 2022 的虚拟机，如下表所示。 | 名称 | 位置 | 连接到 | 网络安全组 (NSG) | | --- | --- | --- | --- | | VM1 | 美国西部 | Vnet1/Subnet1 | NSG1 | | VM2 | 美国西部 | Vnet1/Subnet2 | NSG2 | | VM3 | 美国中部 | Vnet2/Default | NSG3 | | VM4 | 美国中部 | Vnet3/Default | NSG4 | | VM5 | 美国西部 | Vnet4/SubnetA | NSG5 | 这些 NSG 与虚拟机上的网络接口相关联。每个 NSG 都有一个自定义安全规则，允许来自 Internet 的 RDP 连接。每个虚拟机上的防火墙允许 ICMP 流量。一个名为 ASG1 的应用程序安全组与 VM1 的网络接口相关联。 Azure 网络基础设施图 <包含 Vnet1（有 Subnet1、Subnet2，连接 VM1、VM2 及 NSG1、NSG2）、Vnet2（连接 VM3 及 NSG3）、Vnet3（连接 VM4 及 NSG4）、Vnet4（连接 VM5 及 NSG5）、Vnet5（位于美国东部）的网络拓扑图> Azure 专用 DNS 区域 Azure 订阅包含下表中所示的 Azure 专用 DNS 区域。 | 名称 | 位置 | | --- | --- | | zone1.contoso.com | 全局 | | zone2.contoso.com | 全局 | Zone1.contoso.com 具有下表中所示的虚拟网络链接。【缺少答案，请补充】

你正在为VM-Analyze实施虚拟网络要求。你应该在链接到Subnet2的自定义路由中包含什么？要回答，请在答案区域选择适当选项。 NOTE: 每个正确选择得1分。 Hot Area: Answer Area Address prefix: 下拉选项（0.0.0.0/0、0.0.0.0/32、10.1.0.0/16、255.255.255.255/0、255.255.255.255/32） Next hop type: 下拉选项（None、Internet、Virtual appliance、Virtual network、Virtual network gateway）（含图）

Note: 本题是系列题的一部分，每个题含唯一解决方案，部分题可能无正确解。回答后无法返回，问题不显示在复习屏。你有一个启用WAF的Azure应用网关，配置后访问URL得HTTP 403，日志显示WAF规则（ruleId:920300）触发。需求：确保从任何IP通过应用网关访问URL。解决方案：为主机头添加重写规则。这是否满足目标？（含图）

www.contoso.com/abc/def (缺图)

www.contoso.com/default.htm (缺图)

www.contoso.com/abc/def/default.htm (缺图)

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution. After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen. You have an Azure application gateway that has Azure Web Application Firewall (WAF) enabled. You configure the application gateway to direct traffic to the URL of the application gateway. You attempt to access the URL and receive an HTTP 403 error. You view the diagnostics log and discover the following error (log content as shown). You need to ensure that the URL is accessible through the application gateway from any IP address. Solution: You disable the WAF rule that has a ruleId 920300. Does this meet the goal?

You have an Azure subscription that contains an Azure App Service app. The app uses a URL of https://www.contoso.com. You need to use a custom domain on Azure Front Door for www.contoso.com. The custom domain must use a certificate from an allowed certification authority (CA). What should you include in the solution?

You have an Azure application gateway for a web app named App1. The application gateway allows end-to-end encryption. You configure the listener for HTTPS by uploading an enterprise-signed certificate. You need to ensure that the application gateway can provide end-to-end encryption for App1. What should you do?

You configure the listener for HTTPS by uploading an enterprise - signed certificate. You need to ensure that the application gateway can provide end - to - end encryption for App1. What should you do?

VM1 can communicate outbound by using NATgateway1

The virtual machines in Subnet2 communicate outbound by using NATgateway1

All the virtual machines that use NATgateway1 to connect to the internet use the same public IP address

You have an Azure application gateway named AppGW1 that balances requests to a web app named App1. You need to modify the server variables in the response header of App1. What should you configure on AppGW1?

You have an Azure Virtual Desktop deployment that has 500 session hosts. All outbound traffic to the internet uses a NAT gateway. During peak business hours, some users report that they cannot access internet resources. In Azure Monitor, you discover many failed SNAT connections. What should you do?

You have an Azure subscription that contains the public IPv4 addresses shown in the following table. | Name | SKU | IP address assignment | Location | |------|-----|-----------------------|----------| | IP1 | Basic | Static | West US | | IP2 | Basic | Dynamic | West US | | IP3 | Standard | Static | West US | | IP4 | Basic | Static | West US 2 | | IP5 | Standard | Static | West US 2 | You plan to create a load balancer named LB1 that will have the following settings: - Name: LB1 - Location: West US - Type: Public - SKU: Standard Which public IPv4 addresses can be used by LB1?

You have an Azure subscription that contains the public IPv4 addresses shown in the following table. | Name | SKU | IP address assignment | Location | |------|-----|-----------------------|----------| | IP1 | Basic | Static | West US | | IP2 | Basic | Dynamic | West US | | IP3 | Standard | Static | West US | | IP4 | Basic | Static | West US 2 | | IP5 | Standard | Static | West US 2 | You plan to create a load balancer named LB1 that will have the following settings: - Name: LB1 - Location: West US - Type: Public - SKU: Standard Which public IPv4 addresses can be used by LB1? (缺图)

You have the Azure environment shown in the exhibit. VM1 is a virtual machine that has an instance - level public IP address (ILPIP). Basic Load Balancer uses a public IP address. VM1 and VM2 are in the backend pool. NAT Gateway uses a public IP address named IP3 that is associated to SubnetA. VNet1 has a virtual network gateway that has a public IP address named IP4. When initiating outbound traffic to the internet from VM1, which public address is used? (缺图)

You are configuring two network virtual appliances (NVAs) in an Azure virtual network. The NVAs will be used to inspect all the traffic within the virtual network. You need to provide high availability for the NVAs. The solution must minimize administrative effort. What should you include in the solution?

You have five virtual machines that run Windows Server. Each virtual machine hosts a different web app. You plan to use an Azure application gateway to provide access to each web app by using a hostname of www.contoso.com and a different URL path for each web app, for example: https://www.contoso.com/app1. You need to control the flow of traffic based on the URL path. What should you configure?

You plan to publish a website that will use an FQDN of www.contoso.com. The website will be hosted by using the Azure App Service apps shown in the following table. | Name | FQDN | Location | Public IP address | |------|------|----------|-------------------| | AS1 | As1.contoso.com | East US | 131.107.100.1 | | AS2 | As2.contoso.com | West US | 131.107.200.1 | You plan to use Azure Traffic Manager to manage the routing of traffic for www.contoso.com between AS1 and AS2. You create a Traffic Manager profile named TMprofile1. TMprofile1 uses the weighted traffic - routing method. You need to ensure that Traffic Manager routes traffic for www.contoso.com. Which DNS record should you create? (缺图)

更多题库