Given an Azure subscription with a storage account named storage1 …

Computers and Technology Questions
Short Answer
Step by Step Solution
Computers and Technology Questions

You have an Azure subscription that contains a storage account named storage1 and the following virtual machines: VM1 has a public IP address of 13.68.158.24 and is connected to VNET1/Subnet1 VM2 has a public IP address of 52.255.145.76 and is connected to VNET1/Subnet1 VM3 has a public IP address of 13.68.158.50 and is connected to VNET1/Subnet2 The subnets have the following service endpoints: Subnet1 has a Microsoft.Storage service endpoint Subnet2 does NOT have any service endpoint Storage1 has a firewall configured to allow access from the 13.68.158.0/24 IP address range only. You need to identify which virtual machines can access storage1. What should you identify? Select only one answer. VM1 only VM3 only VM1 and VM2 only VM1 and VM3 only VM1, VM2, and VM3

Short Answer

The access to storage1 for virtual machines (VMs) is determined by checking their IP address range and subnet configurations. VM1 and VM2 meet the necessary criteria with access permissions enabled, while VM3, despite being in the correct IP range, lacks access due to its subnet configuration.

Step-by-Step Solution

Step 1: Check IP Address Range

The first step is to verify the IP address range of your virtual machines (VMs). In this case, storage1 has a firewall that permits access from the IP address range 13.68.158.0/24. You must check if each VM falls within this range, as it is crucial for accessing the storage resource.

  • VM1: within the range
  • VM2: within the range
  • VM3: within the range

Step 2: Verify Subnet Configuration

The second step involves examining the subnet configuration for each VM. Both VM1 and VM2 are located in Subnet1, which has a Microsoft.Storage service endpoint enabled. This endpoint is essential for allowing low-latency traffic directly to Azure Storage, enhancing performance and connectivity.

  • VM1: connected to Subnet1 with service endpoint
  • VM2: connected to Subnet1 with service endpoint
  • VM3: connected to Subnet2 without service endpoint

Step 3: Determine Access Permissions

The final step is to determine which VMs have access permissions based on the previous checks. Since both VM1 and VM2 are in the allowed IP range and connected to a subnet with the necessary service endpoint, they can access storage1. VM3, while in the IP range, is on a subnet without the required endpoint, so it does not have guaranteed access.

  • Access granted: VM1, VM2
  • Access denied: VM3

Related Concepts

Ip Address Range

A specified range of ip addresses that defines which devices can communicate with a network resource, such as a firewall or a storage system.

Subnet Configuration

The arrangement of subnets within a network that dictates how ip addresses are allocated and how devices are grouped, allowing for efficient traffic management and resource access.

Access Permissions

The rules that determine which users or devices are allowed to perform certain actions, such as connecting to a network resource or accessing specific services.

Table Of Contents
  1. You have an Azure subscription that contains a storage account named storage1 and the following virtual machines: VM1 has a public IP address of 13.68.158.24 and is connected to VNET1/Subnet1 VM2 has a public IP address of 52.255.145.76 and is connected to VNET1/Subnet1 VM3 has a public IP address of 13.68.158.50 and is connected to VNET1/Subnet2 The subnets have the following service endpoints: Subnet1 has a Microsoft.Storage service endpoint Subnet2 does NOT have any service endpoint Storage1 has a firewall configured to allow access from the 13.68.158.0/24 IP address range only. You need to identify which virtual machines can access storage1. What should you identify? Select only one answer. VM1 only VM3 only VM1 and VM2 only VM1 and VM3 only VM1, VM2, and VM3

Related Articles

Scroll to Top