Knowee
Questions
Features
Study Tools

You have a database hosted in Azure on Azure SQL Database (single database, Gen 5, 16 vCore). You need to ensure that the database is reachable only from your internal network connected to an Azure virtual network through a Virtual Network Gateway. What do you need to do to achieve this goal?A: Configure a Service Endpoint on Azure SQL DatabaseB: Create a virtual network ruleC:Migrate the database to a Managed InstanceD: Migrate the database to an on-premises serverE: This is not possible

Question

You have a database hosted in Azure on Azure SQL Database (single database, Gen 5, 16 vCore). You need to ensure that the database is reachable only from your internal network connected to an Azure virtual network through a Virtual Network Gateway. What do you need to do to achieve this goal?A: Configure a Service Endpoint on Azure SQL DatabaseB: Create a virtual network ruleC:Migrate the database to a Managed InstanceD: Migrate the database to an on-premises serverE: This is not possible

...expand
🧐 Not the exact question you are looking for?Go ask a question

Solution 1

To achieve the goal of ensuring that the database is reachable only from your internal network connected to an Azure virtual network through a Virtual Network Gateway, you need to perform the following steps:

  1. Configure a Service Endpoint on Azure SQL Database: This option allows you to secure the communication between your virtual network and the Azure SQL Database. By configuring a service endpoint, you can restrict access to the database only from your internal network.

  2. Create a virtual network rule: This step involves creating a virtual network rule in Azure SQL Database. By creating this rule, you can specify the virtual network and subnet that are allowed to access the database. This ensures that only the internal network connected to the virtual network through a Virtual Network Gateway can reach the database.

  3. Migrate the database to a Managed Instance: This option involves migrating the database to a Managed Instance in Azure. A Managed Instance provides a fully managed platform for running SQL Server databases. By migrating the database to a Managed Instance, you can take advantage of the built-in network security features and ensure that the database is only accessible from your internal network.

  4. Migrate the database to an on-premises server: This option involves moving the database from Azure to an on-premises server. By doing so, you can have full control over the network connectivity and restrict access to the database only from your internal network.

  5. This is not possible: This option implies that it is not possible to achieve the goal of ensuring that the database is reachable only from your internal network connected to an Azure virtual network through a Virtual Network Gateway. However, in this scenario, it is indeed possible to achieve this goal by following the steps mentioned above.

Therefore, the correct answer to achieve this goal is option A: Configure a Service Endpoint on Azure SQL Database.

This problem has been solved

Solution 2

To achieve the goal of ensuring that the database is reachable only from your internal network connected to an Azure virtual network through a Virtual Network Gateway, you need to perform the following steps:

  1. Configure a Service Endpoint on Azure SQL Database: This option allows you to secure the communication between your virtual network and the Azure SQL Database. By configuring a service endpoint, you can restrict access to the database only from your internal network connected to the virtual network.

  2. Create a virtual network rule: This step involves creating a virtual network rule in Azure SQL Database. By creating this rule, you can specify the virtual network and subnet that are allowed to access the database. This ensures that only the internal network connected to the virtual network can reach the database.

  3. Migrate the database to a Managed Instance: This option involves migrating the database to a Managed Instance in Azure. A Managed Instance provides a fully managed platform for running SQL Server databases. By migrating the database to a Managed Instance, you can take advantage of the built-in network security features that allow you to restrict access to the database only from your internal network connected to the virtual network.

  4. Migrate the database to an on-premises server: This option involves moving the database from Azure to an on-premises server. By doing so, you can ensure that the database is only accessible from your internal network. However, this option may not be feasible if you want to continue using Azure services and take advantage of the cloud benefits.

  5. This is not possible: This option implies that it is not possible to achieve the goal of restricting access to the database only from your internal network connected to the virtual network. However, this is not the correct answer in this case, as there are several options available to achieve this goal in Azure.

In this scenario, the correct answer would be A: Configure a Service Endpoint on Azure SQL Database.

This problem has been solved

Similar Questions

You need to migrate an on-premises SQL Server database to Azure. The solution must include support for SQL Server Agent.Which Azure SQL architecture should you recommend?Select only one answer.Azure SQL Database with the Business Critical service tierAzure SQL Database with the General Purpose service tierAzure SQL Database with the Hyperscale service tierAzure SQL Managed Instance with the General Purpose service tier

You need to connect an Azure Resource Manager virtual network and a classic virtual network. Both networks are created in the same region and do not have overlapping address spaces. How do you achieve the goal?A:Peer the networksB: Create a VPN Site-to-Site connectionC: Route the traffic using an on-premises network applianceD: Route the traffic using an Azure hosted network appliance

You have a Microsoft SQL Server instance that runs in an on-premises datacenter.You plan to deploy a SQL Server instance to an Azure virtual machine and implement an Always On availability group that will contain databases hosted on both SQL Server instances.You need to recommend a connectivity method between the two instances. The solution must minimize the latency of the replication traffic.Which connectivity method should you recommend?Select only one answer.a Point-to-Site (P2S) VPN connectiona Site-to-Site (S2S) VPN connectionan ExpressRoute circuit

You are an Azure administrator at a company that is migrating its on-premises applications to Azure. The company has strict regulatory requirements that only allow data access from its headquarters, which are located at a specific IP address range. The applications will use Azure Blob Storage for data storage.QuestionTo meet compliance requirements, which of the following should you configure to ensure that only traffic from the company's headquarters can access the Azure Blob Storage?A. Configure a service endpoint between the headquarters' virtual network and Azure Blob Storage.B. Implement Azure Entra Identity Governance for conditional access based on IP location.C. Set up a Network Security Group (NSG) with a rule allowing access only from the headquarters’ IP range.D. Apply an IP restriction rule in the Firewalls and virtual networks settings on the Azure Blob Storage account.

In Azure, how can you secure network traffic between Virtual Machines within the same Virtual Network?Azure Virtual Network GatewayAzure Network Security GroupsAzure Load BalancerPhysical firewalls

1/1

Upgrade your grade with Knowee

Get personalized homework help. Review tough concepts in more detail, or go deeper into your topic by exploring other relevant questions.