ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-700 All Questions

View all questions & answers for the AZ-700 exam
Go to Exam

Exam AZ-700 topic 2 question 45 discussion

Actual exam question from Microsoft's AZ-700
Question #: 45
Topic #: 2
[All AZ-700 Questions]

SIMULATION
-




Username and password
-

Use the following login credentials as needed:

To enter your username, place your cursor in the Sign in box and click on the username below.

To enter your password, place your cursor in the Enter password box and click on the password below.

Azure Username: [email protected]

Azure Password: xxxxxxxxxx
-

If the Azure portal does not load successfully in the browser, press CTRL-K to reload the
portal in a new browser tab.

The following information is for technical support purposes only:

Lab Instance: 12345678
-

You plan to use VNET4 for an Azure API Management implementation.

You need to configure a policy that can be used by an Azure application gateway to protect against known web attack vectors. The policy must only allow requests that originate from IP addresses in Canada. You do NOT need to create the application gateway to complete this task.

To complete this task, sign in to the Azure portal.

Show Suggested Answer Hide Answer
Suggested Answer:
by occupatissimo at May 14, 2023, 4:07 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
occupatissimo
Highly Voted 2 years ago
one rule blocking all that isn't from canada is enough
upvoted 15 times
...
Lazylinux
Highly Voted 1 year, 7 months ago
Key point here in Custom rule under WAF policy intended for App gateway not Front Door is to ensure Match type is Geo location > Match variable is remote addr > Operation IS NOT selected> country/region should be Canada> THEN should be set to DENY TRAFFIC
upvoted 6 times
...
thekhijir
Most Recent 6 months, 3 weeks ago
Rule Priority Example Allow Canada IPs Rule: Priority: 100 (this rule will be evaluated first) Action: Allow requests from Canadian IP addresses. Block All Other Traffic Rule: Priority: 200 (this rule will be evaluated after the allow rule) Action: Block all other requests. Azure Portal View While I can’t provide a direct screenshot, here’s a textual representation of how it might look in the Azure portal: +-----------------------------------------------------+ | WAF Policy Rules | +---------------------+-------------------------------+ | Rule Name | Priority | +---------------------+-------------------------------+ | AllowCanadaIPs | 100 | | BlockAllOtherTraffic | 200 | +---------------------+-------------------------------+
upvoted 2 times
...
LieJ0n
1 year, 1 month ago
Creating an allow custom rule, omits all other rules and prevents the "protect from known web attack vectors" requirement. only create a block rule
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel