Learn how to configure an Azure Network Security Group (NSG) rule to block all inbound HTTP traffic to your subnet. Discover the three key settings you need to configure for Rule1 to be effective in your Azure environment.
Table of Contents
Question
You have an Azure subscription that contains an Azure Virtual Network named VNet1. VNet1 contains a subnet named Subnet1. A network security group (NSG) named NSG1 is associated with Subnet1.
You plan to create an NSG rule named Rule1 that will block all inbound HTTP traffic to Subnet1.
Which three properties should you configure for Rule1? Each correct answer presents part of the solution.
A. Action: Allow
B. Action: Deny
C. Destination port: 80
D. Destination port: 443
E. Protocol: TCP
F. Source port: 80
Answer
B. Action: Deny
C. Destination port: 80
E. Protocol: TCP
Explanation
HTTP uses port 80 and a port range of 0-100 covers port 80. HTTP works at the TCP and the action is to deny the traffic.
The source port should not be specified as inbound traffic usually has an ephemeral port number.
Designing and Implementing Microsoft Azure Networking Solutions AZ-700 certification exam assessment practice question and answer (Q&A) dump including multiple choice questions (MCQ) and objective type questions, with detail explanation and reference available free, helpful to pass the Designing and Implementing Microsoft Azure Networking Solutions AZ-700 exam and earn Designing and Implementing Microsoft Azure Networking Solutions AZ-700 certification.