What should you recommend?

You are planning the move of App1 to Azure.

You create a network security group (NSG).

You need to recommend a solution to provide users with access to App1.

What should you recommend?
A . Create an outgoing security rule for port 443 from the Internet. Associate the NSG to all the subnets.
B . Create an incoming security rule for port 443 from the Internet. Associate the NSG to all the subnets.
C . Create an incoming security rule for port 443 from the Internet. Associate the NSG to the subnet that contains the web servers.
D . Create an outgoing security rule for port 443 from the Internet. Associate the NSG to the subnet that contains the web servers.

View Answer

Answer: C

Explanation:

As App1 is public-facing we need an incoming security rule, related to the access of the web servers.

Scenario: You have a public-facing application named App1. App1 is comprised of the following

three tiers: a SQL database, a web front end, and a processing middle tier.

Each tier is comprised of five virtual machines. Users access the web front end by using HTTPS only.