ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-900 All Questions

View all questions & answers for the AZ-900 exam
Go to Exam

Exam AZ-900 topic 1 question 97 discussion

Actual exam question from Microsoft's AZ-900
Question #: 97
Topic #: 1
[All AZ-900 Questions]

HOTSPOT -
You plan to extend your company's network to Azure.
The network contains a VPN appliance that uses an IP address of 131.107.200.1.
You need to create an Azure resource that defines the VPN appliance in Azure.
Which Azure resource should you create? To answer, select the appropriate resource in the answer area.
Hot Area:

Show Suggested Answer Hide Answer
Suggested Answer:
A Local Network Gateway is an object in Azure that represents your on-premise VPN device. A Virtual Network Gateway is the VPN object at the Azure end of the
VPN. A 'connection' is what connects the Local Network Gateway and the Virtual Network Gateway to bring up the VPN.
The local network gateway typically refers to your on-premises location. You give the site a name by which Azure can refer to it, then specify the IP address of the on-premises VPN device to which you will create a connection. You also specify the IP address prefixes that will be routed through the VPN gateway to the VPN device. The address prefixes you specify are the prefixes located on your on-premises network. If your on-premises network changes or you need to change the public IP address for the VPN device, you can easily update the values later.
Reference:
https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-howto-site-to-site-resource-manager-portal
by orallony at Aug. 31, 2021, 7:22 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
BL101
Highly Voted 3 years, 9 months ago
I didn't get this at first - but then re-read the question - the clue is in the extension to Azure which indicates you are on Prem - so you need a Local Network Gateway - that's why people who said Virtual Network Gateway are wrong
upvoted 94 times
2ffc8ff
6 months, 2 weeks ago
Indeed! This is tricky question and the answer is of course in the question itself. This may help explain better: https://learn.microsoft.com/en-us/azure/vpn-gateway/tutorial-site-to-site-portal
upvoted 1 times
...
Foow
3 years, 6 months ago
Is the word "appliance" also not a flag for recognizing that it is on-premise?
upvoted 9 times
RougePotatoe
2 years, 5 months ago
In support of this answer. Read what is local network gateway. The local network gateway is a specific object that represents your on-premises location (the site) for routing purposes. You give the site a name by which Azure can refer to it, then specify the IP address of the on-premises VPN device to which you'll create a connection. You also specify the IP address prefixes that will be routed through the VPN gateway to the VPN device. The address prefixes you specify are the prefixes located on your on-premises network. If your on-premises network changes or you need to change the public IP address for the VPN device, you can easily update the values later. https://learn.microsoft.com/en-us/azure/vpn-gateway/tutorial-site-to-site-portal
upvoted 6 times
...
...
VinnyMacD
1 year, 10 months ago
Local - means creating a resource in your DC. Ask is - You need to create an "Azure resource" that defines the VPN "appliance in Azure." Answer is - Virtual Network Gateway.
upvoted 13 times
rekab18
1 year, 5 months ago
The Virtual Network Gateway in Azure is used to create a VPN connection between your on-premises network and Azure. It can handle site-to-site VPN connections, allowing your on-premises network to extend into Azure.
upvoted 1 times
...
...
Mdorgham
2 years, 6 months ago
It is not "on prem" ! it clearly mentioned [ "Azure resource" that defines the VPN appliance "in Azure."]...it must be VGW only as an "Azure resource" repressing a VPN appliance in "Azure".
upvoted 7 times
...
...
ShubahmMaurya
Highly Voted 3 years, 10 months ago
Today 3 SEP 2021, this question was came.
upvoted 35 times
londonite
2 years, 6 months ago
question was came
upvoted 32 times
Sarmad_Mansour
2 years, 5 months ago
Not funny, a lot of people do not use English as a 2nd / 3rd language. Please do not judge others.
upvoted 44 times
dongboy
2 years, 4 months ago
I thought it was funny
upvoted 42 times
...
...
...
...
RjayC
Most Recent 3 months, 3 weeks ago
To define the VPN appliance in Azure and extend your company's network, you should create an Azure Local Network Gateway. Explanation: The Local Network Gateway represents your on-premises network in Azure. It specifies the VPN appliance's public IP address (in this case, 131.107.200.1) and the address ranges that can be accessed through the VPN connection. It is a key component when setting up a site-to-site VPN connection between your on-premises network and Azure.
upvoted 1 times
...
Tovarasu
7 months, 3 weeks ago
Asked Microsoft Learn on 15.11.2024 The Answer was Virtual network gateway
upvoted 3 times
...
wakyntaky
9 months, 1 week ago
To extend your company's network to Azure and define the VPN appliance with the IP address 131.107.200.1, you need to create a Local Network Gateway in Azure. The Local Network Gateway resource in Azure is used to represent the on-premises location (your company's network) within Azure.
upvoted 1 times
...
Lakadbhagga
10 months, 1 week ago
On-premises (Local Network Gateway): The Local Network Gateway contains information about the on-premises VPN device and the IP address ranges that are reachable through it. This allows Azure to know how to route traffic to the on-premises network. Cloud (Azure Virtual Network Gateway): In Azure, a Virtual Network Gateway is used to manage encrypted traffic between the Azure network and the on-premises network.
upvoted 1 times
...
e3ddceb
1 year ago
Local Network Gateway. A Local Network Gateway in Azure represents your on-premises VPN appliance. It is used to define the IP address of the VPN device and the on-premises IP ranges (address spaces) that can be routed through the VPN tunnel to Azure.
upvoted 1 times
...
Amolaz900
1 year, 2 months ago
Virtual Network Gateway is the service that defines the vpn application in azure. Local gateway is to identify local address in azure. So clearly answer is Virtual Network Gateway
upvoted 1 times
...
yidnekachew
1 year, 3 months ago
here the question is which azure resource do you need to create or use to create an Azure resource that defines the VPN appliance in Azure. In Azure, you don't create a resource that directly defines a VPN appliance. Instead, you create a Virtual Network Gateway (VNet Gateway) which acts as a managed VPN service. This gateway routes traffic between your Azure virtual network and an on-premises location or another Azure virtual network. so the answer is Virtual Network Gateway
upvoted 1 times
...
jason52871
1 year, 3 months ago
As I understand when you are creating a VPN, there are 2 endpoints - Azure and On Premise. In On premise device you need to have Azure configuration along with local config and in Azure you need to have On premise configuration with local config. Azure configuration in Azure is added by Virtual network gateway. On premise configuration in Azure is added by Local network gateway. Here it asks about VPN appliance in Azure --> Virtual network gateway
upvoted 1 times
...
Fmy
1 year, 3 months ago
It should be VPN Gateway: https://learn.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-about-vpn-devices
upvoted 1 times
...
jbinfl
1 year, 3 months ago
On exam 03-2024
upvoted 2 times
...
Pratiksha0401
1 year, 4 months ago
To define the VPN appliance in Azure and extend your company's network, you would typically create a Virtual Network Gateway resource in Azure. Virtual Network Gateway is the Azure resource that allows you to establish a secure connection between your on-premises network and your Azure virtual network. It acts as a VPN endpoint in Azure. So, the correct Azure resource to create in this scenario is: Virtual Network Gateway
upvoted 2 times
...
rakun
1 year, 4 months ago
You plan to extend your company's network to Azure. -> Local network already exists. The network contains a VPN appliance that uses an IP address of 131.107.200.1. -> meaning there is some kind or router/VPN Device in place, locally in your DC. You need to create an Azure resource that defines the VPN appliance in Azure. -> VIRTUAL NETWORK Check the title and the first image in the link: https://learn.microsoft.com/en-us/microsoft-365/enterprise/connect-an-on-premises-network-to-a-microsoft-azure-virtual-network?view=o365-worldwide
upvoted 2 times
...
gfalconx
1 year, 7 months ago
The answer here is local network gateway as it implies to your local network.
upvoted 1 times
...
dgerok
1 year, 8 months ago
The local network gateway
upvoted 1 times
...
SAFM
1 year, 9 months ago
But, now I think it should be a Virtual network gateway; see here: Azure VPN Gateway is a service that uses a specific type of virtual network gateway to send encrypted traffic between an Azure virtual network and on-premises locations over the public Internet.
upvoted 1 times
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel