AZ-305 Question #450: Real Exam Question with Answer & Explanation

Question

You have an Azure subscription that contains a virtual network named VNet1. VNet1 contains three virtual machines that host a web app named App1. The virtual machines are assigned only private IP addresses. You need to recommend a solution to evenly distribute the traffic for App1 across the virtual machines. The solution must meet the following requirements: - Ensure that App1 is accessible only from VNet1. - Minimize administrative effort. What should you include in the recommendation?

Options

• AAzure Front Door
• BAzure Traffic Manager
• CAzure Firewall
• DAzure Application Gateway

Explanation

An Azure Application Gateway is ideal for distributing traffic to private VMs running a web app, using a dedicated subnet within your VNet, providing internal load balancing and SSL termination while keeping the app private, which minimizes cost compared to public-facing solutions like front doors or public IPs on VMs, offering efficient, secure, internal traffic management. Key Components & Setup: Azure Virtual Network (VNet): Your isolated cloud network where all resources reside. Virtual Machines (VMs): Three VMs with only private IP addresses within a VNet subnet, hosting your web app instances (e.g., as a scale set or individual VMs). Dedicated Application Gateway Subnet: A separate, dedicated subnet in your VNet is required for the Application Gateway itself; no other resources can live there. Application Gateway: Deployed into that dedicated subnet, it acts as the internal load balancer. Backend Pool: The App Gateway's backend pool points to the private IPs of your three VMs. Listeners & Rules: Configure an internal listener (no public IP needed) on the App Gateway, routing traffic (e.g., HTTP/S) to the VMs via HTTP settings. https://learn.microsoft.com/en-us/azure/application-gateway/configuration-infrastructure

No community discussion yet for this question.