🔥 3-day streak
Microsoft Azure Network Engineer Associate98 / 152
Question 98 of 152
Your company deploys a private endpoint for an Azure SQL Database into a subnet named snet-data in a hub-spoke topology. A security team requires that only VMs in the app-tier subnet be allowed to reach the private endpoint, and all other subnets must be denied. The private endpoint subnet already has network policies enabled. What must you do to enforce this traffic filtering using network security groups?
Reviewed for accuracy · Report an issueNext question