Learn how to configure Azure Network Watcher NSG flow logs to monitor source and destination IP addresses, port/protocol usage, and traffic allowed/denied by NSG1. Enhance your Azure Networking knowledge for the AZ-700 exam!
Table of Contents
Question
You have an Azure subscription that contains an Azure Virtual Network named VNet1. VNet1 contains a network security group (NSG) named NSG1.
You need to configure Azure Network Watcher to monitor network traffic for NSG1 for the following:
- The source and destination IP addresses.
- The port and protocol used.
- Whether traffic was allowed or denied by NSG1.
Which Network Watcher settings should you configure?
A. Connection monitor
B. NSG flow logs
C. Packet capture
D. Topology
Answer
B. NSG flow logs
Explanation
NSG flow logs is the correct answer as it is the setting in Network Watcher to configure NSG flow logs to be analyzed. Connection monitor does not provide information about packet blocked/allowed. Packet capture allows you to create packet capture sessions to track traffic to and from a virtual machine or a scale set. Topology generates a visual diagram of the resources on a virtual network and the relationships between the resources.
Designing and Implementing Microsoft Azure Networking Solutions AZ-700 certification exam assessment practice question and answer (Q&A) dump including multiple choice questions (MCQ) and objective type questions, with detail explanation and reference available free, helpful to pass the Designing and Implementing Microsoft Azure Networking Solutions AZ-700 exam and earn Designing and Implementing Microsoft Azure Networking Solutions AZ-700 certification.