Learn how to force internet traffic from an Azure Virtual Network to your on-premises Boston office for data inspection using Azure VPN Gateway. Explore the steps to configure route tables, set up VPN connections, and implement force tunneling for the AZ-700 certification exam.
Table of Contents
Question
Your on-premises network has three offices in Seattle, Los Angeles, and Boston.
You have an Azure subscription that contains an Azure VPN gateway named VPNGateway1. VPNGateway1 is deployed to an Azure Virtual Network named VNet1. VPNGateway1 contains VPN connections to all three offices.
You need to force all internet traffic from VNet1 to the Boston office for data inspection.
Which three actions should you perform? Each correct answer presents part of the solution.
A. Associate the route table to all the subnets on VNet1.
B. Configure Boston as the default site on VPNGateway1.
C. Create a route table that has a default route and a next hop to VPNGateway1.
D. Create a route table that has a default route and Internet next hop.
E. Enable BGP between Azure and Boston.
Answer
A. Associate the route table to all the subnets on VNet1.
B. Configure Boston as the default site on VPNGateway1.
C. Create a route table that has a default route and a next hop to VPNGateway1.
Explanation
Force tunneling for VPN requires a route table that has a default route pointed to the Azure VPN gateway, and then Boston set up as the default site. All traffic, including internet traffic, will route over the VPN tunnel to on-premises.
You do not need to configure BGP for this but can enable it for routing purposes. A routing table that has a default route with Internet next hop will not force internet traffic back on-premises.
Designing and Implementing Microsoft Azure Networking Solutions AZ-700 certification exam assessment practice question and answer (Q&A) dump including multiple choice questions (MCQ) and objective type questions, with detail explanation and reference available free, helpful to pass the Designing and Implementing Microsoft Azure Networking Solutions AZ-700 exam and earn Designing and Implementing Microsoft Azure Networking Solutions AZ-700 certification.