Exam AZ-104 topic 5 question 56 discussion

Correct Answer: VNET1: 10.10.10.0 - 10.10.10.255 VNET2: 172.16.0.0 - 172.16.255.255 VNETA: 10.10.128.0 - 10.10.255.255 Box 1: No To create a VNet to VNet VPN you need to have a special Gateway Subnet. Here, the VNet has no sufficient address space to create a Gateway Subnet and thus to establish a VNet to VNet VPN connection. Box 2: Yes For VNet peering the only consideration is that the VNets do not overlap. VNET1 and VNET2 do not overlap. Box 3: Yes For VNet peering the only consideration is that the VNets do not overlap. VNET1 and VNETA do not overlap.

The answer should be N-Y-Y : 1: No because to create a Vnet to Vnet VPN you need to have a special gateway subnet. Here the Vnet has only /24 CIDR blocks of address space and this space is already taken by its Subnet. Hence there is no sufficient address space to create a gateway subnet and thus to establish a Vnet to Vnet VPN connection. For 2 & 3 : They address spaces for the Virtual network don't overlap, we can thus establish a peering connection between the Virtuals Networks.

WRONG No Yes Yes

YYY is the answer

should be YYY Vnet-Vnet can be established without gateway Vnet1 and Vnet2 can be peered (no overlapping) Vnet1 and VnetA can be peered (no overlapping)

No Yes Yes

No Yes Yes

This question was in exam 01/03/2024

No Yes Yes... Totally agree with Mlantonis... Box 1 no; they purposely eliminated the possibility of other subnets to make sure you understand that Site to Site requires Gateway Subnet. Box 2 and 3 Yes; They do not overlap so you're good to go.

Answer is YYY VNET1 and VNETA can be peer: VNET1: 10.10.10.0/24 - First IP 10.10.10.0, Last IP 10.10.10.255 VNETA: 10.10.128.0/17 - First IP 10.10.128.0, Last IP 10.10.255.255

whom should we follow? discussion of examtopic answers?

what the hell? every second question has confusion. Why are we not able to get the exact answers even after paying huge amount?

N Y Y is correct!

Thats a lot of wrong answers, i payed 40 dollar for this.

Agree with N,Y,Y For Box1: https://learn.microsoft.com/en-us/azure/vpn-gateway/tutorial-site-to-site-portal#about-the-gateway-subnet "If you see an error that specifies that the address space overlaps with a subnet, or that the subnet isn't contained within the address space for your virtual network, check your VNet address range. You may not have enough IP addresses available in the address range you created for your virtual network. For example, if your default subnet encompasses the entire address range, there are no IP addresses left to create additional subnets. You can either adjust your subnets within the existing address space to free up IP addresses, or specify an additional address range and create the gateway subnet there."

Cleared Exam today 26 Feb, This question was there in exam.

NYY is the answer. https://learn.microsoft.com/en-us/azure/vpn-gateway/tutorial-site-to-site-portal#about-the-gateway-subnet The virtual network gateway uses specific subnet called the gateway subnet. The gateway subnet is part of the virtual network IP address range that you specify when configuring your virtual network. It contains the IP addresses that the virtual network gateway resources and services use. When you create the gateway subnet, you specify the number of IP addresses that the subnet contains. The number of IP addresses needed depends on the VPN gateway configuration that you want to create. Some configurations require more IP addresses than others. We recommend that you create a gateway subnet that uses a /27 or /28. https://learn.microsoft.com/en-us/azure/virtual-network/virtual-network-manage-peering?tabs=peering-portal#requirements-and-constraints The virtual networks you peer must have non-overlapping IP address spaces.