Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us [email protected]
Menu

Unlimited Access

Get Unlimited Contributor Access to the all ExamTopics Exams!
Take advantage of PDF Files for 1000+ Exams along with community discussions and pass IT Certification Exams Easily.
Microsoft Discussions

Exam AZ-104 topic 5 question 32 discussion

Actual exam question from Microsoft's AZ-104
Question #: 32
Topic #: 5
[All AZ-104 Questions]

HOTSPOT -
You have an Azure subscription that contains three virtual networks named VNET1, VNET2, and VNET3.
Peering for VNET1 is configured as shown in the following exhibit.

Peering for VNET2 is configured as shown in the following exhibit.

Peering for VNET3 is configured as shown in the following exhibit.

How can packets be routed between the virtual networks? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

Show Suggested Answer Hide Answer
Suggested Answer:
Box 1. VNET2 and VNET3 -

Box 2: VNET1 -
Gateway transit is disabled.
Reference:
https://docs.microsoft.com/en-us/azure/virtual-network/virtual-network-peering-overview
by mdyck at May 1, 2021, 2:57 a.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
mlantonis
Highly Voted 2 years, 6 months ago
Correct Answer: VNet1: Peered with VNet2 and VNet3 VNet2: Peered with VNet1 VNet3: Peered with VNet1 Box 1. VNET2 and VNET3 VNet1 is peered with VNet2 and VNet3. Also Gateway transit is disabled. Box 2: VNET1 only Gateway transit is disabled, so it can only communicate with the connected VNET1. Reference: https://docs.microsoft.com/en-us/azure/virtual-network/virtual-network-peering-overview https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-peering-gateway-transit
upvoted 107 times
...
mdyck
Highly Voted 2 years, 7 months ago
Answer Correct. Gateway transit is disabled so they can only communicate with VNET1. https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-peering-gateway-transit
upvoted 20 times
fedev21
1 year, 10 months ago
As far as I know virtual peering is not transitive and Spoke-to-Spoke traffic is not allowed. Enabling Gateway transit allows for cross-premises communication but not for Spoke-to-Spoke traffic. The only way to make possible spoke-to-spoke traffic is to use an NVA in the HUB VNet
upvoted 8 times
...
Devgela
2 years, 7 months ago
Agree with mdyck
upvoted 4 times
...
verifedtomic
2 years ago
If Gateway Transit was enabled, then they all would be able to communicate between eachother, since VNET1 is Peering with both VNET2 and VNET3?
upvoted 1 times
magichappens
1 year, 8 months ago
No, for this to work you need use defined routes and either Azure Firewall or an NVA. mdyck is wrong. https://docs.microsoft.com/en-us/azure/architecture/reference-architectures/hybrid-networking/hub-spoke?tabs=cli#virtual-network-peering
upvoted 6 times
...
...
...
shadad
Most Recent 9 months, 1 week ago
I took Exam of Azure- 104 at 27/2/2023 I score 920 points out of 1000 points. This was on it and my answer was: Box 1. VNET2 and VNET3 VNet1 is peered with VNet2 and VNet3 Box 2: VNET1 only Gateway transit is disabled
upvoted 3 times
...
UK7
11 months, 2 weeks ago
Came on 21st Dec 2022 Answer is correct
upvoted 1 times
...
Liriano
1 year, 1 month ago
In exam today, go with highly voted
upvoted 1 times
...
majerly
1 year, 2 months ago
today in exam, answer is correct
upvoted 3 times
...
EmnCours
1 year, 3 months ago
Answer Correct
upvoted 1 times
...
Lazylinux
1 year, 5 months ago
Given answer is correct but explanation for part 2 is not Gateway transit only applies when there is a VPN gateway created and Gateway transit is a peering property that lets one virtual network use the VPN gateway in the peered virtual network for cross-premises or VNet-to-VNet connectivity hence really allows for reduced cost and administrative effort since only one VPN GW to manage and pay for So in summary the Gateway transit option that you enable allows you to use the VPN GW for rooting, Now assuming the VPN GW has all necessary routes then yes communication between VNET2 and VNET3 is possible but if for argument sake that the VPN GW dont have routes of VNET2 and VNET3 then both VNETs will NOT be able to communicate
upvoted 8 times
...
vaisat
1 year, 11 months ago
Second port is INCORRECT - 1. Packets from VNET1 can be forwarded VNET2 and VNET3. 2. Packets from VNET2 can be routed to BOTH VNET1 and VNET3. This is insured by default parameter "Traffic forwarded from remote virtual network". Please note, "Gateway Transit" parameter has nothing to do with this. Gateway might not even exist in this example.
upvoted 2 times
itgg11
1 year, 9 months ago
Your 2nd answer is not correct.
upvoted 1 times
itgg11
1 year, 9 months ago
tested in the lab. GW transit must be enabled to allow for routing packets between vnet3 and vnet2
upvoted 2 times
...
...
...
im82
2 years ago
Was on exam today 19.11.2021. Passed with 920. Correct answer: -VNET2 and VNET3 - VNET1 only
upvoted 4 times
...
Takloy
2 years ago
If we were to enable GW Transit, which VNET? Is it VNET1?
upvoted 1 times
...
a4andrew
2 years, 1 month ago
What would happen if Gateway Transit was enabled?
upvoted 1 times
walkwolf3
2 years, 1 month ago
Then all three vnets can talk to each other.
upvoted 2 times
...
...
ScoutP
2 years, 2 months ago
This question was asked on exam taken on Sept 30, 2021
upvoted 3 times
...
AubinBakana
2 years, 3 months ago
Easy :)
upvoted 1 times
...
[Removed]
2 years, 5 months ago
Answer is correct, but explanation is not. Gateway transit only applies when there is a VPN gateway created. Since there is no mention of that, all that matters are the peerings between the Vnets. Vnet1 -> Vnet2 and Vnet3 Vnet2 -> Vnet1 Vnet3 -> Vnet1 This means that Vnet2 cannot see Vnet3. Am I wrong?
upvoted 5 times
amf
2 years, 4 months ago
You are right. Gateway transit only applies when there is a VPN gateway created. So the explanation given is not correct.
upvoted 1 times
...
Lazylinux
1 year, 5 months ago
You are absolutely right.. Gateway transit only applies when there is a VPN gateway created and Gateway transit is a peering property that lets one virtual network use the VPN gateway in the peered virtual network for cross-premises or VNet-to-VNet connectivity hence really allows for reduced cost and administrative effort since only one VPN GW to manage
upvoted 3 times
...
...
Chief
2 years, 7 months ago
Correct answer. Gateway transit is disabled so they only communicate with the connected VNETs https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-peering-gateway-transit
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel