Exam: AZ-900: Microsoft Azure Fundamentals 0 Likes
A company is planning on creating several virtual machines that will (AZ-900)
A company is planning on creating several virtual machines that will be used to host web and database servers. You need to limit the type of connections from the web and database servers.
Which of the following can be used to fulfil this requirement?
A) Network Security Groups.
B) Azure AD Identity Protection.
C) Azure VPN.
D) Azure Route tables.
Solution
Correct answer: A) Network Security Groups.
NSGs act as a basic firewall that allows or denies traffic to your virtual machines in Azure. You can define inbound and outbound security rules based on source and destination IP addresses, port numbers, and protocols, effectively controlling the traffic flow to and from your servers.
Azure AD Identity Protection is more focused on identity and access management, Azure VPN is used for secure connectivity between Azure virtual networks or between an Azure virtual network and an on-premises network, and Azure Route Tables are used for controlling the routing behavior within Azure virtual networks. While these services are important for other purposes, they do not directly fulfill the requirement of limiting the type of connections to specific servers.
Category: Azure architecture and services