ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-304 All Questions

View all questions & answers for the AZ-304 exam
Go to Exam

Exam AZ-304 topic 2 question 49 discussion

Actual exam question from Microsoft's AZ-304
Question #: 49
Topic #: 2
[All AZ-304 Questions]

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
Your company has deployed several virtual machines (VMs) on-premises and to Azure. Azure ExpressRoute has been deployed and configured for on-premises to Azure connectivity.
Several VMs are exhibiting network connectivity issues.
You need to analyze the network traffic to determine whether packets are being allowed or denied to the VMs.
Solution: Use Azure Network Watcher to run IP flow verify to analyze the network traffic.
Does the solution meet the goal?

  • A. Yes
  • B. No
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
The Network Watcher Network performance monitor is a cloud-based hybrid network monitoring solution that helps you monitor network performance between various points in your network infrastructure. It also helps you monitor network connectivity to service and application endpoints and monitor the performance of
Azure ExpressRoute.
Note:
IP flow verify checks if a packet is allowed or denied to or from a virtual machine. The information consists of direction, protocol, local IP, remote IP, local port, and remote port. If the packet is denied by a security group, the name of the rule that denied the packet is returned. While any source or destination IP can be chosen,
IP flow verify helps administrators quickly diagnose connectivity issues from or to the internet and from or to the on-premises environment.
IP flow verify looks at the rules for all Network Security Groups (NSGs) applied to the network interface, such as a subnet or virtual machine NIC. Traffic flow is then verified based on the configured settings to or from that network interface. IP flow verify is useful in confirming if a rule in a Network Security Group is blocking ingress or egress traffic to or from a virtual machine.
Reference:
https://docs.microsoft.com/en-us/azure/network-watcher/network-watcher-monitoring-overview https://docs.microsoft.com/en-us/azure/network-watcher/network-watcher-ip-flow-verify-overview
by Puspendu at May 31, 2021, 7:58 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
sharepoint_Azure_pp
Highly Voted 3 years, 9 months ago
This was there as 2nd set of 3 Y/N question. Azure network watcher is correct Choose the same cleared with 900 on 17th October 2021
upvoted 16 times
...
pentium75
Highly Voted 3 years, 11 months ago
I think it's clearly "Yes" what they are after. But still, a thought: The company has several VMs in cloud and several VMs on premises. We are not told which VMs experience network issues, thus in theory it could be that the issue is between two on-premise VMs. Wouldn't Network Watcher be unable to support this investigation?
upvoted 6 times
examineezer
3 years, 7 months ago
Valid observation.
upvoted 1 times
...
...
jr_luciano
Most Recent 3 years, 5 months ago
Selected Answer: A
Answer is Yes
upvoted 2 times
...
syu31svc
3 years, 10 months ago
This is the correct solution Answer is Yes
upvoted 3 times
...
El_Hechizo
4 years ago
Correct see: https://docs.microsoft.com/en-us/azure/network-watcher/network-watcher-ip-flow-verify-overview#:~:text=IP%20flow%20verify%20checks%20if,denied%20the%20packet%20is%20returned.
upvoted 3 times
...
tvs2021
4 years ago
on exam (7-19-2021). cleared 304.
upvoted 3 times
...
gssd4scoder
4 years, 2 months ago
Correct https://docs.microsoft.com/en-us/azure/network-watcher/network-watcher-monitoring-overview. It was something similar in AZ-303 and I passed the exam.
upvoted 4 times
...
Puspendu
4 years, 2 months ago
Seems to be correct
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel