Answer-first summary for fast verification
Answer: Create a hub and spoke network by using virtual network peering., Deploy Azure Bastion to one virtual network.
The correct answers are A and C. Creating a hub and spoke network using virtual network peering (A) allows for a centralized management approach and ensures secure connectivity between the virtual networks without exposing the public IP addresses. Deploying Azure Bastion to one virtual network (C) enables secure and seamless RDP/SSH connectivity to your virtual machines directly from the Azure portal over TLS. This solution does not require a public IP address, VPN, or additional software, which also helps in minimizing costs. Deploying Azure Bastion to each virtual network (B) would increase costs unnecessarily, and the other options (D and E) don't completely satisfy the requirement of preventing exposure of public IP addresses while minimizing costs.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
Your company, which has an office in Seattle, operates two Azure virtual machine scale sets located on different virtual networks. The company is planning to hire developers based in India. As part of this initiative, you need to recommend a solution that enables these developers to securely connect to the virtual machines over SSL via the Azure portal. The solution must adhere to the following criteria: avoid exposing the public IP addresses of the virtual machines, allow connections without the need for a VPN, and minimize costs. What are the two actions you should perform to meet these requirements? Each correct selection represents part of the solution. NOTE: Each correct selection is worth one point.
A
Create a hub and spoke network by using virtual network peering.
B
Deploy Azure Bastion to each virtual network.
C
Deploy Azure Bastion to one virtual network.
D
Create NAT rules and network rules in Azure Firewall.
E
Enable just-in-time VM access on the virtual machines.