Microsoft Azure Architect Design (2020, legacy) — Question 52

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
Your company has deployed several virtual machines (VMs) on-premises and to Azure. Azure ExpressRoute has been deployed and configured for on-premises to Azure connectivity.
Several VMs are exhibiting network connectivity issues.
You need to analyze the network traffic to determine whether packets are being allowed or denied to the VMs.
Solution: Use the Azure Traffic Analytics solution in Azure Log Analytics to analyze the network traffic.
Does the solution meet the goal?

Answer options

• A. Yes
• B. No

Correct answer: B

Explanation

The proposed solution does not meet the goal because Azure Traffic Analytics primarily provides insights into traffic patterns and usage but does not specifically identify whether packets are being allowed or denied. To determine packet filtering, a more suitable approach would be to use Network Security Group (NSG) flow logs or Azure Network Watcher, which can provide detailed information about allowed and denied traffic for the VMs.