Microsoft Azure Administrator Associate AZ-104 Practice Question
You are setting up a virtual network (VNet) in Azure to host multiple virtual machines (VMs). For security compliance, you need to isolate specific groups of VMs from each other while keeping them within the same VNet. What is the best way to achieve this network segmentation?
Configure different virtual network gateways for each group
Create separate subnets within the VNet for each group of VMs
Deploy separate VNets for each group of VMs
Use network security groups to block traffic between VMs
Creating separate subnets within the same virtual network (VNet) is the best method to segment the network. Subnets allow you to divide the VNet into smaller, isolated sections where you can place groups of VMs. This facilitates internal isolation and enables you to apply subnet-specific network security policies. Deploying separate VNets would isolate the VMs but would complicate management and inter-VNet communication. Using network security groups (NSGs) helps control traffic but doesn't inherently provide network segmentation based on IP addressing. Configuring different virtual network gateways is unnecessary for isolating groups within the same VNet.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a subnet in a virtual network?
Open an interactive chat with Bash
How do network security groups (NSGs) work in Azure?
Open an interactive chat with Bash
What are the benefits of using separate subnets in a VNet?
Open an interactive chat with Bash
Microsoft Azure Administrator Associate AZ-104
Configure and manage virtual networking
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access