ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-104 All Questions

View all questions & answers for the AZ-104 exam
Go to Exam

Exam AZ-104 topic 5 question 87 discussion

Actual exam question from Microsoft's AZ-104
Question #: 87
Topic #: 5
[All AZ-104 Questions]

You have an Azure subscription.
You are deploying an Azure Kubernetes Service (AKS) cluster that will contain multiple pods. The pods will use kubernet networking.
You need to restrict network traffic between the pods.
What should you configure on the AKS cluster?

  • A. the Azure network policy
  • B. the Calico network policy
  • C. pod security policies
  • D. an application security group
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by MrMacro at Dec. 10, 2021, 9:52 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
ninjia
Highly Voted 2 years, 11 months ago
Selected Answer: B
I think the correct answer is B. The question describes “the pods will use kubernet networking.” To provide network connectivity, AKS clusters can use kubenet (basic networking) or Azure CNI (advanced networking). Azure Network Policies supports Azure CNI only. Calico Network Policies supports both Azure CNI (Windows Server 2019 and Linux) and kubenet (Linux). Hence, the correct answer is B. Reference https://docs.microsoft.com/en-us/azure/aks/use-network-policies https://docs.microsoft.com/en-us/azure/aks/configure-kubenet
upvoted 45 times
RougePotatoe
1 year, 10 months ago
To summarize. You need calico network policy because this question explicitly stated "pods will use kubernet networking." which means you need a policy that can support kubernet networking. Look at supported networking options of the following link. https://learn.microsoft.com/en-us/azure/aks/use-network-policies#differences-between-azure-network-policy-manager-and-calico-network-policy-and-their-capabilities
upvoted 9 times
...
...
ITprof99
Highly Voted 2 years, 11 months ago
On exam 01.02.22 Answer: B
upvoted 18 times
...
Neftali
Most Recent 1 month ago
Selected Answer: B
To restrict network traffic between the pods in an Azure Kubernetes Service (AKS) cluster, you should configure the Calico network policy. Therefore, the correct answer is: B. the Calico network policy
upvoted 1 times
...
kejo2
2 months ago
B is correct: Network policy options in AKS Azure provides three Network Policy engines for enforcing network policies: Cilium for AKS clusters that use Azure CNI Powered by Cilium. Azure Network Policy Manager. Calico, an open-source network and network security solution founded by Tigera.
upvoted 1 times
...
SeMo0o0o0o
2 months, 2 weeks ago
Selected Answer: B
B is correct
upvoted 1 times
...
SrWalk49
3 months, 3 weeks ago
AKS is no longer on this exam.
upvoted 2 times
danlo
2 days, 14 hours ago
Correct, only ACR, ACI, and ACA
upvoted 1 times
...
...
Amir1909
9 months, 2 weeks ago
B is correct
upvoted 2 times
...
YesPlease
1 year, 1 month ago
Selected Answer: B
B) Calico Network Policies Question specifically calls out Kubernet: https://learn.microsoft.com/en-us/azure/aks/use-network-policies#differences-between-azure-network-policy-manager-and-calico-network-policy-and-their-capabilities
upvoted 1 times
...
muzzying
1 year, 2 months ago
If you go to AKS in the portal and try to create, selecting the Kubernet networking will grey out the 'Azure Network Policy' leaving only the 'Calico' policy to choose.
upvoted 1 times
...
Tomix
1 year, 5 months ago
Option A: Azure network policy Azure network policy provides a built-in network security solution for AKS clusters. It allows you to define network traffic rules at the Kubernetes namespace level using standard Kubernetes NetworkPolicy objects. With Azure network policy, you can control ingress (incoming) and egress (outgoing) network traffic between pods based on IP addresses, ports, and protocols.
upvoted 1 times
...
Haroldgm
1 year, 5 months ago
Selected Answer: B
In the exam June 24, 2023
upvoted 3 times
...
ojogbon
1 year, 8 months ago
On the exam Apr 2nd, 2023
upvoted 6 times
...
CyberKelev
1 year, 9 months ago
Selected Answer: A
To restrict network traffic between pods in an Azure Kubernetes Service (AKS) cluster, you should configure the Azure network policy.
upvoted 2 times
...
zellck
1 year, 10 months ago
Selected Answer: B
B is the answer. https://learn.microsoft.com/en-us/azure/aks/use-network-policies#differences-between-azure-network-policy-manager-and-calico-network-policy-and-their-capabilities
upvoted 3 times
zellck
1 year, 10 months ago
Got this in Feb 2023 exam.
upvoted 3 times
...
zellck
1 year, 10 months ago
Calico Network Policy Supported networking options - Azure CNI (Linux, Windows Server 2019 and 2022) and kubenet (Linux)
upvoted 1 times
...
...
typales2005
1 year, 11 months ago
Selected Answer: B
was in the 09/01/2023 exam
upvoted 7 times
...
klexams
2 years, 1 month ago
B for kubenet. Azure NPM: Linux, Windows Server 2022 Azure CNI Calico Network Policy: Linux, Windows Server 2019 and 2022 Azure CNI (Linux, Windows Server 2019 and 2022) and kubenet (Linux)
upvoted 2 times
...
Makarand123
2 years, 1 month ago
There's other way also using 'linkered' service mesh but not given here
upvoted 1 times
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago