Exam AZ-104 topic 6 question 46 discussion

BD is the answer. https://learn.microsoft.com/en-us/azure/network-watcher/network-watcher-ip-flow-verify-overview IP flow verify checks if a packet is allowed or denied to or from a virtual machine. The information consists of direction, protocol, local IP, remote IP, local port, and a remote port. If the packet is denied by a security group, the name of the rule that denied the packet is returned. While any source or destination IP can be chosen, IP flow verify helps administrators quickly diagnose connectivity issues from or to the internet and from or to the on-premises environment.

Exactly the same question was on todays exam. (7th April 2023)

https://learn.microsoft.com/en-us/azure/network-watcher/network-watcher-ip-flow-verify-overview

B & D are correct

ChatGPT4 says B&D

It can't be D at this point because it asks, "What two options can you use to diagnose the problem?" Not to solve. Solution: B/C

B and E

B: Check connectivity to/from a VM; D: Check connection between VMs;

Azure Monitor Network Insights can help troubleshoot the mesh by showing the network topology...then IP flow helps see where exactly the problem is...my thoughts

B. IP flow verify and D. Connection troubleshoot are the two options that can be used to diagnose the issue.

Cleared Exam today 26 Feb, This question was there in exam.

Answer is correct, B & D. The IP flow verify (B) and connection troubleshoot (D) options can be used to diagnose the issue reported by the user. IP flow verify is a feature of Azure Network Watcher that you can use to verify if a packet is allowed or denied to or from a virtual machine based on the security group rules defined on the subnet. By using IP flow verify, you can determine if a rule is blocking traffic to port 33000 from one virtual machine to another in different regions. Connection troubleshoot is another feature of Azure Network Watcher that provides a simple and easy-to-use solution for troubleshooting connectivity issues between virtual machines. With connection troubleshoot, you can determine if the network security groups (NSGs) or firewall rules are blocking traffic to port 33000, and identify the exact rule that is causing the issue.

Ans:- AD Expla: A. Azure Virtual Network Manager: It allows you to view the topology of your virtual network, and can help you diagnose issues with virtual network peering. D. Connection troubleshoot: It is a feature of Azure Network Watcher that allows you to troubleshoot and diagnose connectivity issues between virtual machines within a virtual network or across virtual networks. It can help you identify if the issue is with the NSG rules or with the virtual network peering.

Correct Answers B. IP flow verify D. Connection troubleshoot

Azure Monitor Network Insights provides sth like dashboard and access to the diagnostics toolkit only, which cannot perform troubleshooting as IP flow verify and connection troubleshoot. Thus, I think the ans is B & D

Azure Monitor Network Insights provides sth like dashboard and access to the diagnostics toolkit only, which cannot perform troubleshooting as IP flow verify and connection troubleshoot. Thus, I think the ans is B & D

The correct answer is B and D