ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-700 All Questions

View all questions & answers for the AZ-700 exam
Go to Exam

Exam AZ-700 topic 1 question 10 discussion

Actual exam question from Microsoft's AZ-700
Question #: 10
Topic #: 1
[All AZ-700 Questions]

HOTSPOT -
You have the hybrid network shown in the Network Diagram exhibit.

You have a peering connection between Vnet1 and Vnet2 as shown in the Peering-Vnet1-Vnet2 exhibit.

You have a peering connection between Vnet1 and Vnet3 as shown in the Peering-Vnet1-Vnet3 exhibit.

For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Hot Area:

Show Suggested Answer Hide Answer
Suggested Answer:
Box 1: Yes -
Virtual network peering seamlessly connects two Azure virtual networks, merging the two virtual networks into one for connectivity purposes.

Box 2: No -
No Virtual Gateway is used.
Gateway transit is a peering property that lets one virtual network use the VPN gateway in the peered virtual network for cross-premises or VNet-to-VNet connectivity. The following diagram shows how gateway transit works with virtual network peering.

In the diagram, gateway transit allows the peered virtual networks to use the Azure VPN gateway in Hub-RM. Connectivity available on the VPN gateway, including S2S, P2S, and VNet-to-VNet connections, applies to all three virtual networks.

Box 3: No -
No Virtual Gateway is used.
Reference:
https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-peering-gateway-transit
by DerekKey at Sept. 3, 2022, 9:17 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
amt2022
Highly Voted 1 year, 11 months ago
Correct answer Y,N,N. Remember Azure VNET Peering is NON-Transitive. Meaning, only direct peered VNETs can talk to each other. To make it transitive you either use VNET Gateway or NVAs/Azure FireWall.
upvoted 19 times
...
Prutser2
Highly Voted 2 years, 3 months ago
correct, vnet1 cannot be a trnsit between vnets2 and 3, without using the gateway as transit
upvoted 6 times
vikrants31
1 year, 1 month ago
Incorrect. Vnet2 can communicate to Vnet3 because the communication is via AZURE backbone not via Gateway, gateway is only required if Vnet2 wants to communicate to On-prem. My take YYN As per this MSDOC https://learn.microsoft.com/en-us/azure/virtual-network/virtual-network-peering-overview
upvoted 2 times
c2e9cb4
1 year ago
This is not correct No transitivity be default between spokes vnets
upvoted 5 times
...
...
...
Eddie_Sli
Most Recent 6 months ago
Y, N, N Correct, As mentioned by amt2022 and morito
upvoted 3 times
...
Jastix
10 months, 3 weeks ago
YYN amt2022. Unfortunately your are incorrect. VNet peering is non-transitive by default. This default behaviour can be altered by selecting the appropriate option 'allow forwarded traffic from the peered vnet'. This would allow 'vnet-3' to receive forwarded traffic from 'vnet-1' (i.e. traffic that is sent from vnet2 is forwarded from vnet1 to vnet2. So the correct option in box 2 is YES. Therefore the answer to the question is YYN. Vnet1 does not allow gateway transit, so vnet3 cannot communicate with the on-prem network.
upvoted 2 times
morito
6 months, 2 weeks ago
This is not correct. If you actually bother to create a virtual network and check the description that is shown for this option. It reads: Enabling this option will allow the peered virtual network to receive traffic from virtual networks peered to 'test'. For example, if vnet-2 has an NVA that receives traffic from outside of vnet-2 that gets forwards to vnet-1, you can select this setting to allow that traffic to reach vnet-1 from vnet-2. While enabling this capability allows the forwarded traffic through the peering, it doesn't create any user-defined routes or network virtual appliances. User-defined routes and network virtual appliances are created separately. Meaning that only selecting this option won't enable the peering between VNET 2 & VNET 3
upvoted 2 times
Eddie_Sli
6 months ago
YOU EXPLANATION IS CORRECT! 20240729
upvoted 1 times
...
...
...
CiscoExam
1 year ago
The options have all changed on the actual Azure Portal UI now. It's much clearer and self-explanatory now in fact !
upvoted 1 times
...
MARTINOV
1 year, 3 months ago
I don't get it, why can't VNET1 communcate with on-prem when there is a site-to-site VPN present?
upvoted 2 times
...
bp_a_user
1 year, 3 months ago
The last one should be yes: It is stated that there is a Site-to-Site VPN which implies that there is virtual network gateway.
upvoted 1 times
bp_a_user
1 year, 3 months ago
I am wrong, I think it that old screenshot, the option "remote gateway or route server" should be enabled
upvoted 3 times
...
...
vDreams
1 year, 4 months ago
Answer is tricky. Y/N/N is correct, because it's not mentioned the usage of NVA or VNG. If it mentioned NVA, or use of VNG, then it would be Y/Y/Y
upvoted 2 times
...
omgMerrick
1 year, 11 months ago
Answer is correct. Y N N
upvoted 2 times
...
TJ001
2 years ago
yes,no,no
upvoted 2 times
...
zukako
2 years ago
correct vnet1 not use its gateway for vnet2
upvoted 1 times
...
DeepMoon
2 years, 4 months ago
Doesn't the 2nd Link name on both those peerings are wrong matter?
upvoted 1 times
...
GetulioJr
2 years, 4 months ago
Answer is correct, The option: Use the remote virtual network's gateway" is not enabled
upvoted 2 times
...
DerekKey
2 years, 4 months ago
Correct
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago