ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-700 All Questions

View all questions & answers for the AZ-700 exam
Go to Exam

Exam AZ-700 topic 4 question 56 discussion

Actual exam question from Microsoft's AZ-700
Question #: 56
Topic #: 4
[All AZ-700 Questions]

You have an Azure subscription that contains the resources shown in the following table.



NSG1 is associated to the NIC of VM1 and contains the rules shown in the following table.



You collect NSG flow logs for five minutes for the following activities:

• Two RDP sessions from VM1 to VM2, each initiated from a different TCP port
• Three SSH sessions from VM2 to VM1, each initiated from a different TCP port

You analyze the logs by using Traffic Analytics in Azure Network Watcher.

How many aggregated flow entries will Traffic Analytics identify?

  • A. 1
  • B. 2
  • C. 5
  • D. 10
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by QzLP2P at Nov. 28, 2024, 1:50 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
QzLP2P
Highly Voted 4 months, 3 weeks ago
Selected Answer: C
NSG flow logs capture each unique flow, which is defined by the combination of the following: - Source IP - Source port - Destination IP - Destination port - Protocol The answer is 5
upvoted 5 times
xRiot007
1 week ago
It has nothing to do with that - what you mentioned is the tuple structure
upvoted 1 times
...
...
juancarlosdlar
Most Recent 4 months ago
Selected Answer: C
How traffic analytics works Traffic analytics examines raw flow logs. It then reduces the log volume by aggregating flows that have a common source IP address, destination IP address, destination port, and protocol. An example might involve Host 1 at IP address 10.10.10.10 and Host 2 at IP address 10.10.20.10. Suppose these two hosts communicate 100 times over a period of one hour. The raw flow log has 100 entries in this case. If these hosts use the HTTP protocol on port 80 for each of those 100 interactions, the reduced log has one entry. That entry states that Host 1 and Host 2 communicated 100 times over a period of one hour by using the HTTP protocol on port 80.
upvoted 3 times
...
flejur
4 months ago
Selected Answer: C
Based on the information provided in the image and the analysis of the NSG flow logs, Traffic Analytics in Azure Network Watcher will identify 5 aggregated flow entries. To break this down: RDP Sessions: Two RDP sessions from VM1 to VM2 Each initiated from a different TCP port Total RDP flow entries: 2 SSH Sessions: Three SSH sessions from VM2 to VM1 Each initiated from a different TCP port Total SSH flow entries: 3 The total number of aggregated flow entries is the sum of RDP and SSH sessions: 2 + 3 = 5.
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago