Explanation:
The correct answer is C. The outbound rule 'DenyWebSites' is already correctly configured to block outbound internet traffic over port 80. However, the NSG is not associated with any subnets or network interfaces, as indicated in the question. By associating the NSG with Subnet1, you would effectively apply the rule to prevent users of VM1 and VM2 from accessing websites on the Internet over TCP port 80.
Ultimate access to all questions.
No comments yet.
In an Azure subscription with VM1 and VM2 deployed from the same template, how do you prevent access to Internet websites over TCP port 80 using a configured NSG?
A
Disassociate the NSG from network interfaces
B
Modify the Port_80 inbound security rule
C
Associate the NSG with Subnet1
D
Adjust the DenyWebSites outbound security rule