AZ-700 · Question #387
AZ-700 Question #387: Real Exam Question with Answer & Explanation
The correct answer is A: DDos protection plan in the Azure portal. DDoS Protection mitigation reports are accessed directly through the DDoS Protection Plan blade in the Azure portal, which provides built-in dashboards showing attack telemetry, mitigation flows, and post-attack reports - exactly what the question asks for after running a simulat
Question
You have an Azure subscription that contains the resources shown in the following table. You test DDoSplan1 by running a simulation that targets IP1. You need to review the DDoS Protection mitigation reports. What should you use?
Options
- ADDos protection plan in the Azure portal
- BLog Analytics
- CMicrosoft Defender for Cloud
- DAzure Monitor Network Insights
Explanation
DDoS Protection mitigation reports are accessed directly through the DDoS Protection Plan blade in the Azure portal, which provides built-in dashboards showing attack telemetry, mitigation flows, and post-attack reports - exactly what the question asks for after running a simulation against IP1.
Why the distractors are wrong:
- B. Log Analytics is used to query and analyze log data, but it doesn't natively surface DDoS mitigation reports without custom queries; it's not the primary interface for this.
- C. Microsoft Defender for Cloud focuses on security posture, vulnerability assessments, and threat protection - not DDoS-specific mitigation reporting.
- D. Azure Monitor Network Insights provides network topology and health views, but DDoS mitigation reports live under the DDoS Protection Plan, not this blade.
Memory tip: Think "DDoS reports live with the DDoS plan." Just as you go to a Firewall resource to see firewall logs, you go to the DDoS Protection Plan resource to see its mitigation reports - the feature owns its own reporting.
Topics
Community Discussion
No community discussion yet for this question.