ExpertThis question is part of a case study — click to read the full scenario(Case 51)
CASE STUDY (Questions 51-55)
Contoso Financial is a global investment bank.
Current Infrastructure:
- On-premises datacenters in New York, London, and Tokyo.
- Azure regions used: US East, Europe West, Japan East.
- Each on-premises datacenter is connected to its local Azure region via a 10 Gbps ExpressRoute circuit.
- Azure architecture uses a Hub-and-Spoke topology in each region.
Business Requirements:
- The network architecture must support global failover. If the US East region fails, the New York datacenter must be able to route traffic to the Europe West Azure region.
- All outbound internet traffic from Azure VMs must be inspected by a centralized firewall.
- Azure PaaS services (SQL, Storage) must not be accessible from the public internet.
- Network management overhead must be minimized as the company plans to add 50 more spoke VNets per region next year.
Question 1 of 5:
To meet the global failover requirement, the New York datacenter must be able to communicate with the Europe West Azure region if US East fails.
Which ExpressRoute feature or architecture should you implement?
AZ-305 · Question 54 · Domain 4.4: Design network solutions
CASE STUDY (Questions 51-55)
Contoso Financial is a global investment bank.
Current Infrastructure:
- On-premises datacenters in New York, London, and Tokyo.
- Azure regions used: US East, Europe West, Japan East.
- Each on-premises datacenter is connected to its local Azure region via a 10 Gbps ExpressRoute circuit.
- Azure architecture uses a Hub-and-Spoke topology in each region.
Business Requirements:
- The network architecture must support global failover. If the US East region fails, the New York datacenter must be able to route traffic to the Europe West Azure region.
- All outbound internet traffic from Azure VMs must be inspected by a centralized firewall.
- Azure PaaS services (SQL, Storage) must not be accessible from the public internet.
- Network management overhead must be minimized as the company plans to add 50 more spoke VNets per region next year.
Question 4 of 5:
The company currently uses traditional Hub-and-Spoke VNets.
To meet the requirement to minimize network management overhead when adding 50 more spoke VNets per region, the Lead Architect suggests replacing the traditional Hub VNets with a managed service that automates spoke connectivity, routing, and integrates Azure Firewall.
Which service is the architect recommending?
CASE STUDY (Questions 51-55)
Contoso Financial is a global investment bank.
Current Infrastructure:
- On-premises datacenters in New York, London, and Tokyo.
- Azure regions used: US East, Europe West, Japan East.
- Each on-premises datacenter is connected to its local Azure region via a 10 Gbps ExpressRoute circuit.
- Azure architecture uses a Hub-and-Spoke topology in each region.
Business Requirements:
- The network architecture must support global failover. If the US East region fails, the New York datacenter must be able to route traffic to the Europe West Azure region.
- All outbound internet traffic from Azure VMs must be inspected by a centralized firewall.
- Azure PaaS services (SQL, Storage) must not be accessible from the public internet.
- Network management overhead must be minimized as the company plans to add 50 more spoke VNets per region next year.
Question 4 of 5:
The company currently uses traditional Hub-and-Spoke VNets.
To meet the requirement to minimize network management overhead when adding 50 more spoke VNets per region, the Lead Architect suggests replacing the traditional Hub VNets with a managed service that automates spoke connectivity, routing, and integrates Azure Firewall.
Which service is the architect recommending?
Answer options:
Azure Route Server
Azure Virtual WAN
Azure Network Manager
Azure Front Door
How to approach this question
Full Answer
Common mistakes
Practice the full Azure Solutions Architect Expert AZ-305 Practice Exam 3
55 questions · hints · full answers · grading