A for sure.
https://learn.microsoft.com/en-us/azure/network-watcher/network-watcher-nsg-flow-logging-overview#how-nsg-flow-logs-work
"Retention is available only if you use general-purpose v2 storage accounts."
Retention only available with Standard general-purpose v2 storage accounts
==============
Retention (days)- Enter a retention time for the logs (this option is only available with Standard general-purpose v2 storage accounts
B. An Azure Log Analytics workspace
To enable NSG flow logs for NSG1 and support retention policies, you should first create an Azure Log Analytics workspace. NSG flow logs can be sent to an Azure Storage account or a Log Analytics workspace, but using a Log Analytics workspace provides more advanced querying and retention policy capabilities.
Check the note on this link "Retention is available only if you use general-purpose v2 storage accounts."
https://learn.microsoft.com/en-us/azure/network-watcher/network-watcher-nsg-flow-logging-overview#how-nsg-flow-logs-work
A. Standard general-purpose v2 storage account
Read my correction and source:
https://learn.microsoft.com/en-us/azure/network-watcher/network-watcher-nsg-flow-logging-portal#enable-nsg-flow-log
B. An Azure Log Analytics workspace.
To enable network security group (NSG) flow logs for NSG1, you need to create an Azure Log Analytics workspace first. The flow logs can then be sent to the workspace for analysis and monitoring.
After creating the Log Analytics workspace, you can then configure NSG flow logs to be sent to the workspace by specifying the Log Analytics workspace ID and key in the NSG flow log settings. You can also configure retention policies for the logs within the workspace.
Answer is A - you have to create a storage account when using the Log Analytics too. That storage must be a v2
https://learn.microsoft.com/en-us/azure/network-watcher/nsg-flow-logs-portal#create-a-flow-log
After further study, I'm changing my answer to A. the standard general-purpose v2 storage account.
It very clearly states that NSG flow logs require a storage account as that is where the log data is actually written. The tutorial on the source link below even states that you should create a standard storage account.
Source:
https://learn.microsoft.com/en-us/azure/network-watcher/network-watcher-nsg-flow-logging-portal#enable-nsg-flow-log
The answer is correct as stated right here in documentation: https://learn.microsoft.com/en-us/azure/network-watcher/network-watcher-nsg-flow-logging-overview#:~:text=Retention%20is%20available%20only%20if%20you%20use%20General%20purpose%20v2%20Storage%20accounts%20(GPv2).
The correct answer is B. An Azure Log Analytics workspace
To enable NS flow logs for NSG1 and support retention policies, you must first create an Azure Log Analytics workspace. Once created, you can configure the NSG1 to send flow logs to the Log Analytics workspace, then you can use the Log Analytics workspace to view and analyze the flow logs data and also set retention policies for the data.
No wrong ...when enabling NSG flow log it asks for what storage account and what retention is needed (0 means forever or provide the required no of days upto 365).. Log Analytics workspace is only needed if Traffic Analytics solution needs to be enabled.
Totally wrong..retention has nothing to do with it as matter of fact it is there when you create NSG FLOW LOGS you will be prompted to put in the retention days..see here
https://learn.microsoft.com/en-us/azure/network-watcher/nsg-flow-logging
"Network security group (NSG) flow logs is a feature of Azure Network Watcher that allows you to log information about IP traffic flowing through an NSG. Flow data is sent to Azure Storage accounts from where you can access it as well as export it to any visualization tool, SIEM, or IDS of your choice."
https://learn.microsoft.com/en-us/azure/network-watcher/network-watcher-nsg-flow-logging-overview
upvoted 2 times
...
This section is not available anymore. Please use the main Exam Page.AZ-700 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
SJHCI
Highly Voted 1 year, 2 months agogaurav4101
Most Recent 3 months, 3 weeks agoefayed
8 months, 2 weeks agoahos
1 year, 5 months agoLazylinux
1 year, 6 months agomabalon
1 year, 7 months agoomgMerrick
2 years, 1 month agoomgMerrick
2 years, 1 month agoxRiot007
4 days, 5 hours agoJohnnyChimpo
1 year, 11 months agoomgMerrick
2 years, 1 month agoLazylinux
1 year, 6 months agosamir111
2 years, 1 month agoalkorkin
2 years, 2 months agoTJ001
2 years, 2 months agoalfonzo47
2 years, 2 months agoYassine145
2 years, 2 months agoTJ001
2 years, 2 months agoLazylinux
1 year, 6 months agoAkodo_Shado
2 years, 3 months ago