ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-700 All Questions

View all questions & answers for the AZ-700 exam
Go to Exam

Exam AZ-700 topic 2 question 86 discussion

Actual exam question from Microsoft's AZ-700
Question #: 86
Topic #: 2
[All AZ-700 Questions]

HOTSPOT
-

You have an Azure subscription that contains a virtual network named VNet1.

Your on-premises network connects to VNet1 by using a Site-to-Site (S2S) VPN connection.

You need to ensure that Azure Network Watcher generates an alert if the VPN connection fails.

Which Network Watcher feature should you use to generate the alert, and which data source should the feature query? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Show Suggested Answer Hide Answer
Suggested Answer:
by manhattan at Jan. 3, 2025, 5:57 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Saba53
4 months ago
Tested in lab: Wrong! It should be Connection Monitor and Network Watcher Agent.
upvoted 2 times
...
bobothewiseman
4 months, 2 weeks ago
Feature: VPN troubleshoot Data source: Network Watcher Agent
upvoted 2 times
...
Sergovladi
5 months ago
You should use Connection Monitor to send data to Azure Monitor which generates alerts based on Metrics and Logs from different sources
upvoted 1 times
Sergovladi
5 months ago
https://learn.microsoft.com/en-us/azure/network-watcher/connection-monitor-overview?form=MG0AV3 https://learn.microsoft.com/en-us/azure/vpn-gateway/monitor-vpn-gateway https://learn.microsoft.com/en-us/azure/azure-monitor/overview
upvoted 1 times
manhattan
4 months, 3 weeks ago
yeah, ith should be Connector Watcher Network Watcher in your link "Azure virtual machines with the Network Watcher extension send data to both the workspace and the metrics." https://learn.microsoft.com/en-us/azure/network-watcher/connection-monitor-overview?form=MG0AV3#compare-azure-connectivity-monitoring-support-types
upvoted 1 times
manhattan
4 months, 3 weeks ago
ahh, this question is driving me mad 1) I'll go for Connection monitor https://learn.microsoft.com/en-us/azure/network-watcher/connection-monitor-overview#diagnose-issues-in-your-network Virtual network gateway issues: Missing routes. The tunnel between two gateways is disconnected or missing. The second gateway wasn't found by the tunnel. No peering info was found. 2) I'm really confused, NSG logs or Network logs?
upvoted 1 times
...
...
...
...
manhattan
5 months, 1 week ago
Selected Answer: A
I'm not sure about this question, I'd would rather go with Connection monitor Virtual network flow logs. I tried the VPN troubleshooting settings in my lab and can't see the function/alert mentioned, besides NSG flow logs is usually used in conjunction with Log analytics/storage etc. From the portal-monitor-alerts or from the VNG-alerts it is an easy configuration.
upvoted 2 times
exam2301
5 months, 1 week ago
It is VPN troubleshoot and Network Watcher Agent Enable Network Watcher: Ensure Network Watcher is enabled in the region where your resources are located. Configure VPN Troubleshoot: In the Azure portal, navigate to Network Watcher. Under Network diagnostic tools, select VPN troubleshoot. Select the virtual network gateway and connection you want to monitor. Choose a storage account to save the diagnostic logs. Create an Alert Rule: Go to Alerts in the Azure portal. Create a new alert rule. Set the condition to monitor the VPN connection status. Define the action group to notify you when the alert is triggered.
upvoted 4 times
manhattan
5 months ago
it seems that you have to do that with two separate steps. 1) write the VPN troubleshooting logs in a storage account 2) create an alert (in the procedure above after "create a new alert rule" you have to select the resource for your alert before setting the condition, and I suppose it is the storage account you have selected before via VPN troubleshooting, right?
upvoted 1 times
...
...
Gambito11
5 months, 1 week ago
the answer correct is VPN Troubleshoot and NSG Flow logs https://learn.microsoft.com/es-es/azure/network-watcher/network-watcher-overview
upvoted 1 times
xRiot007
2 months, 1 week ago
NSG Flow logs have to do with allowing/denying packets. I can deny packets while my connection is up, so this is not a good indicator if the VPN failed or not. The correct answer is to use VPN troubleshoot. This feature uses Network Watcher agent to retrieve your data that will be inspected to decide if alerts need to be created. Ref: https://learn.microsoft.com/en-us/azure/network-watcher/vpn-troubleshoot-overview
upvoted 1 times
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel