ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-103 All Questions

View all questions & answers for the AZ-103 exam
Go to Exam

Exam AZ-103 topic 4 question 50 discussion

Actual exam question from Microsoft's AZ-103
Question #: 50
Topic #: 4
[All AZ-103 Questions]

HOTSPOT -
You have an Azure subscription named Subscription1.
Subscription1 contains the virtual machines in the following table.

Subscription1 contains a virtual network named VNet1 that has the subnets in the following table.

VM3 has multiple network adapters, including a network adapter named NIC3. IP forwarding is enabled on NIC3. Routing is enabled on VM3.
You create a route table named RT1 that contains the routes in the following table.

You apply RT1 to Subnet1 and Subnet2.
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
Hot Area:

Show Suggested Answer Hide Answer
Suggested Answer:
IP forwarding enables the virtual machine a network interface is attached to:
✑ Receive network traffic not destined for one of the IP addresses assigned to any of the IP configurations assigned to the network interface.
✑ Send network traffic with a different source IP address than the one assigned to one of a network interface's IP configurations.
The setting must be enabled for every network interface that is attached to the virtual machine that receives traffic that the virtual machine needs to forward. A virtual machine can forward traffic whether it has multiple network interfaces or a single network interface attached to it.

Box 1: Yes -
The routing table allows connections from VM3 to VM1 and VM2. And as IP forwarding is enabled on VM3, VM3 can connect to VM1.

Box 2: No -
VM3, which has IP forwarding, must be turned on, in order for VM2 to connect to VM1.

Box 3: Yes -
The routing table allows connections from VM1 and VM2 to VM3. IP forwarding on VM3 allows VM1 to connect to VM2 via VM3.
References:
https://docs.microsoft.com/en-us/azure/virtual-network/virtual-networks-udr-overview https://www.quora.com/What-is-IP-forwarding
by DeadHead at March 14, 2020, 6:01 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Hanuman
Highly Voted 5 years ago
Did the hands-on and following are the observations: After enabling ICMPv4 firewall rule on vm1,vm2 and vm3. Also, restarted vm3 for Ip Forwarding to take effect. From vm1: Able to ping vm2 as well as vm3. Through tracert: tracert vm2 1 1 ms * 1 ms vm3.internal.cloudapp.net [10.0.3.4] 2 2 ms 2 ms 2 ms vm2.internal.cloudapp.net [10.0.2.4] From vm2: Able to ping vm1 and vm3. Through tracert:tracert vm1 1 1 ms * 1 ms vm3.internal.cloudapp.net [10.0.3.4] 2 3 ms 2 ms 3 ms vm1.internal.cloudapp.net [10.0.1.4] From vm3: Able to ping every machine. 1.Yes, vm3 can establish connection to both vm1 and vm2 because it using system route. 2. No, vm2 cannot establish connection to vm1 after vm3 is turned off. Reason is vm2 using user-defined route and there is no path to reach vm1 anymore. Vice-versa for vm1 as well. Vm3 is having ip-forwarding enabled and when it will be on then request from vm2 will be forwarded to further vm1. 3. Yes, vm1 can establish connection to vm2 and vice-versa if vm3 is turned on. Given answers are coorect.
upvoted 27 times
AustinY
4 years, 10 months ago
yes, this seems correct. Subnet3 of VM3 has no UDP applied to Subnet that allows VM3 to communicate other subnets. But Subnet 1 and Subnet 2 need VM3 to be used as router. Great test, thanks for sharing.
upvoted 1 times
...
...
raj10207
Highly Voted 4 years, 11 months ago
Came in Exam , Exam given on 06.07.2020
upvoted 10 times
...
I
Most Recent 4 years, 4 months ago
Given answers are correct.
upvoted 1 times
...
Thi
4 years, 7 months ago
Given answer correct
upvoted 3 times
...
DA0410
4 years, 10 months ago
yes.Can we have diagram attachment facility along with answer ?
upvoted 1 times
...
Ausias18
4 years, 11 months ago
The question is right: Yes, No, Yes
upvoted 5 times
...
Shades
4 years, 11 months ago
The answers seem to be correct. 1) VM3 can talk to VM1 as usual 2) VM3 is used as Virtual appliance & route table attache to both subnet says that routing has to happen through VM3 as it is mentioned as next hop address, so if VM3 is not available , connection will not work. 3) Even though they are all in same VNet (& could have talked even if nothing was configured) , because of teh set up , VM2 can talk to VM1 only though VM3
upvoted 4 times
...
ahmed812
5 years ago
When you add UDR, system route is marked as invalid. Azure automatically added this route for all subnets within Virtual-network-1, because 10.0.0.0/16 is the only address range defined in the address space for the virtual network. If the user-defined route in route ID2 weren't created, traffic sent to any address between 10.0.0.1 and 10.0.255.254 would be routed within the virtual network, because the prefix is longer than 0.0.0.0/0, and not within the address prefixes of any of the other routes. Azure automatically changed the state from Active to Invalid, when ID2, a user-defined route, was added, since it has the same prefix as the default route, and user-defined routes override default routes. The state of this route is still Active for Subnet2, because the route table that user-defined route, ID2 is in, isn't associated to Subnet2.
upvoted 1 times
...
S458855
5 years, 1 month ago
anwser is correct. if vm3 is off. it will timeout when vm1 want to find vm2
upvoted 2 times
...
P0d
5 years, 2 months ago
Answer is correct. Normally without custom routes it should be yes, yes. yes. As described in question. RT1 has been created it means some system routes has been changed by custom route. And That's why second will be No. https://docs.microsoft.com/en-us/azure/virtual-network/virtual-networks-udr-overview
upvoted 9 times
...
FrancisFerreira
5 years, 3 months ago
They actually just effed up everything with this routing. VMs could already talk to each other before that, now they can't if VM3 is off. Also, VMs in Subnet1 and Subnet2 would unnecessarily route through VM3 when talking to VMs in their own subnets.
upvoted 5 times
asdfgh1234567
5 years, 1 month ago
Unless VM3 is an NVA and needs to inspect all traffic going between the subnets for security purposes. Also, traffic on the same subnet won't need a route because it already knows the MAC addresses of other NICs in the same subnet.
upvoted 1 times
...
...
Honken
5 years, 3 months ago
How does VM3 find its way to VM1 and VM2?
upvoted 1 times
FrancisFerreira
5 years, 3 months ago
They are in the same VNet. These routings are unnecessary.
upvoted 4 times
hstorm
4 years, 10 months ago
No they are not, they ensures that all traffic can be monitored on VM3
upvoted 1 times
...
...
...
DeadHead
5 years, 3 months ago
By default, subsets in VNet can talk to each other. So even VM3 is off, o Question B should be yes.
upvoted 5 times
snoocer
5 years, 3 months ago
I dont think so because there is a user-defined-route on subnet2 and the VM try to route via VM3.... Also: No routing-table in Subnet 3 so it uses sytem-routes --> connection works (Box1: Yes but nut because of the custom routing)
upvoted 17 times
...
FrancisFerreira
5 years, 3 months ago
Nope. Routing would still end up in a NVA that's not functioning, and no traffic would be forwarded.
upvoted 3 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel