Answer-first summary for fast verification
Answer: Azure Subnets within a Virtual Network, enabling the creation of isolated network segments for each department within the same virtual network., Azure Network Security Groups (NSGs) in conjunction with Subnets, to not only isolate but also control the traffic between departments with fine-grained rules.
Azure Subnets within a Virtual Network (B) is the correct choice for creating isolated network segments for each department within the same virtual network, ensuring security and compliance. However, for enhanced security and control over inter-departmental communication, combining Subnets with Azure Network Security Groups (NSGs) (E) provides a more robust solution by allowing fine-grained traffic control between the isolated segments. This approach meets the company's requirements for isolation, security, and cost-effectiveness.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
A company is planning to migrate its infrastructure to Azure and requires a solution to segregate network traffic between its HR, Finance, and IT departments within a single virtual network to ensure security and compliance. Each department's resources must be isolated from one another to prevent unauthorized access, while still allowing for inter-departmental communication under strict controls. Given the need for cost-effectiveness and scalability, which Azure networking feature should be used to achieve this isolation, and why? (Choose one correct option.)
A
Azure Virtual Network Peering, as it allows for seamless connectivity between multiple virtual networks without the need for gateways.
B
Azure Subnets within a Virtual Network, enabling the creation of isolated network segments for each department within the same virtual network.
C
Azure VPN Gateway, providing secure connectivity between on-premises networks and Azure but not suitable for internal segmentation.
D
Azure ExpressRoute, offering dedicated private network connectivity which is overkill for internal segmentation needs.
E
Azure Network Security Groups (NSGs) in conjunction with Subnets, to not only isolate but also control the traffic between departments with fine-grained rules.
No comments yet.