Posted by: Pdfprep
Post Date: February 20, 2021
ACE Inc. had been using a standard marketplace router as an NVA (Network Virtual Appliance) in the hub Virtual Network (VNet) for spoke to spoke communication. The NVA has just been replaced by Azure Firewall.
Now the security operations team is reporting that traffic between Virtual Machines in the same VNet is working however any inter-VNet traffic is being dropped by the NSGs (Network Security Groups) at destination.
What could be a possible reason?
A . Azure Firewall is blocking all the traffic
B . There is no route at the Azure Firewall
C . Azure Firewall is doing SNAT for inter-VNet traffic
D . BGP routes in UDR need to be updated
Answer: C
Leave a Reply