Microsoft Azure Administrator Associate AZ-104 Practice Question
You need to ensure that all outbound network traffic from a specific subnet in your Azure virtual network is sent to a designated virtual machine for inspection before reaching external destinations. What should you configure to achieve this?
Enable Azure Firewall on the virtual network
Implement a VPN gateway to route traffic through the virtual machine
Configure a user-defined route on the subnet with the virtual machine as the next hop
Apply a network security group to the subnet to redirect the traffic
To direct traffic from a subnet to a specific virtual machine for inspection, you should configure a user-defined route with the virtual machine as the next hop. This custom route overrides Azure's default routing and ensures that traffic from the subnet is sent to the virtual machine (acting as a network virtual appliance) before it reaches external destinations. Applying a network security group or enabling Azure Firewall would not direct the traffic through the virtual machine. Implementing a VPN gateway is used for connecting to on-premises networks, not for routing internal traffic to a virtual machine within the virtual network.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a user-defined route (UDR) in Azure?
Open an interactive chat with Bash
What does it mean to set a virtual machine as a next hop?
Open an interactive chat with Bash
Why would a network security group (NSG) not redirect traffic to a VM?
Open an interactive chat with Bash
Microsoft Azure Administrator Associate AZ-104
Configure and manage virtual networking
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access