ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-304 All Questions

View all questions & answers for the AZ-304 exam
Go to Exam

Exam AZ-304 topic 2 question 15 discussion

Actual exam question from Microsoft's AZ-304
Question #: 15
Topic #: 2
[All AZ-304 Questions]

DRAG DROP -
A company has an existing web application that runs on virtual machines (VMs) in Azure.
You need to ensure that the application is protected from SQL injection attempts and uses a layer-7 load balancer. The solution must minimize disruption to the code for the existing web application.
What should you recommend? To answer, drag the appropriate values to the correct items. Each value may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
Select and Place:

Show Suggested Answer Hide Answer
Suggested Answer:
Box 1: Azure Application Gateway
Azure Application Gateway provides an application delivery controller (ADC) as a service. It offers various layer 7 load-balancing capabilities for your applications.
Box 2: Web Application Firewall (WAF)
Application Gateway web application firewall (WAF) protects web applications from common vulnerabilities and exploits.
This is done through rules that are defined based on the OWASP core rule sets 3.0 or 2.2.9.
There are rules that detects SQL injection attacks.
Reference:
https://docs.microsoft.com/en-us/azure/application-gateway/application-gateway-faq https://docs.microsoft.com/en-us/azure/application-gateway/waf-overview
by uzairahm007 at Dec. 7, 2020, 5:37 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Elecktrus
Highly Voted 4 years, 6 months ago
Answer is correct. Because: 1-Azure Application Gateway, Azure Load Balancer y Azure Traffic Manager are all of them Load Balancers. But they are different: Application Gateway works in OSI layer 7 , Load Balancer works in OSI Layer 4 and Traffic Manager works with DNS. So, the only that verify the requirement (load-balance at level 7) is Azure Application Gateway 2) Features are Web Application Firewall, SSL-Offloading and url-content routing. Obviusly, the only to protect against SQLInjections is Firewall (ssl-offloading is to manage https request) so the answer is Web Applicaton Firewall. By the way, there is another one Load Balancer, named Azure Front Door, that works in OSI level 7, too. https://docs.microsoft.com/en-us/azure/architecture/guide/technology-choices/load-balancing-overview https://docs.microsoft.com/es-es/azure/web-application-firewall/ag/ag-overview
upvoted 88 times
andyR
4 years, 6 months ago
Good to also remember which LB are regional V inter - regional
upvoted 2 times
binq
3 years, 2 months ago
Azure Front Door Global HTTP(S) Traffic Manager Global non-HTTP(S) Application Gateway Regional HTTP(S) Azure Load Balancer Regional non-HTTP(S)
upvoted 3 times
...
...
georgemich1
3 years, 4 months ago
thanks!
upvoted 1 times
...
...
airairo
Highly Voted 4 years, 6 months ago
came in exam last month.
upvoted 9 times
...
gauravit43
Most Recent 2 years, 1 month ago
I have passed AZ-305 on 15th April,2023 and this question was there in the exam
upvoted 2 times
...
OCHT
3 years ago
Agree . Az service=> AGW , AZ feature => WAF . Correct answer.
upvoted 1 times
...
teyol51117
3 years, 2 months ago
On exam 31.03.2022
upvoted 1 times
...
plmmsg
3 years, 3 months ago
Answer is correct
upvoted 1 times
...
Dpejic
3 years, 5 months ago
On exam 24.12.2021
upvoted 4 times
...
Dpejic
3 years, 5 months ago
Appere on exam 23-dec-2021
upvoted 3 times
...
sharepoint_Azure_pp
3 years, 7 months ago
Answer is correct or can say i choose the same. was there in 17th October 2021 cleared with 900
upvoted 2 times
...
dkltruong88
3 years, 8 months ago
Was in exam today 1-10-2021. I passed with score 896. I chose provided answer
upvoted 3 times
...
syu31svc
3 years, 8 months ago
Layer 7 so Service is Application Gateway https://docs.microsoft.com/en-us/azure/web-application-firewall/ag/ag-overview Azure Web Application Firewall (WAF) on Azure Application Gateway provides centralized protection of your web applications from common exploits and vulnerabilities. Web applications are increasingly targeted by malicious attacks that exploit commonly known vulnerabilities. SQL injection and cross-site scripting are among the most common attacks. Feature is WAF
upvoted 1 times
...
ExStudent
3 years, 8 months ago
I looked up MS documentation and WAF is referenced as a service & not as a Feature
upvoted 1 times
examineezer
3 years, 5 months ago
You are right, but the only combined answer that makes sense here is AG for service and WAF for feature.
upvoted 1 times
...
...
tvs2021
3 years, 10 months ago
passed 304 today, this question appeared in my exam.
upvoted 2 times
...
glam
4 years, 4 months ago
Box 1: Azure Application Gateway Box 2: Web Application Firewall (WAF)
upvoted 2 times
...
milind8451
4 years, 4 months ago
Correct. Application GW will work as Layer 7 LB and WAF which is part of it, will protect from SQL Injection attack.
upvoted 1 times
...
Blaaa
4 years, 4 months ago
Correct
upvoted 2 times
...
uzairahm007
4 years, 6 months ago
discussion under https://www.examtopics.com/discussions/microsoft/view/11672-exam-az-301-topic-2-question-25-discussion/
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel