Summary of the Azure Firewall rule types:
A. DNAT (Destination Network Address Translation):
Allows you to translate the destination IP address and port of incoming traffic to an internal IP address and port.
Primarily used to expose internal services to the internet.
Effectively, it maps a public IP/port to a private IP/port.
B. Network Rules:
Control traffic based on source and destination IP addresses, ports, and protocols (TCP, UDP, ICMP).
Used for general network traffic filtering.
C. Application Rules:
Control traffic based on fully qualified domain names (FQDNs), HTTP/HTTPS protocols, and other application-specific attributes.
Provides more granular control over web traffic.
D. Infrastructure Rules:
These are rules that the azure firewall uses for its own internal operations.
These rules are used for things like the azure firewall reaching out to the internet for updates, or for other internal azure communications.
These rules are mostly managed by Microsoft.
https://learn.microsoft.com/en-us/azure/firewall/policy-rule-sets#:~:text=and%20any%20protocols.-,Application%20rules,-Application%20rules%20allow
C is correct since the question asks to use the FW1 to filter traffic to the VNET using the FQDN of the Azure SQL.
The firewall rule that support using FQDN is Application rule
upvoted 2 times
...
This section is not available anymore. Please use the main Exam Page.AZ-700 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
armpitworm
2 months, 3 weeks agobobothewiseman
4 months, 4 weeks agoe6d6bf4
5 months, 2 weeks ago