AZ-700 Microsoft Designing and Implementing Microsoft Azure Networking Solutions Free Practice Exam Questions (2026 Updated)

Prepare effectively for your Microsoft AZ-700 Designing and Implementing Microsoft Azure Networking Solutions certification with our extensive collection of free, high-quality practice questions. Each question is designed to mirror the actual exam format and objectives, complete with comprehensive answers and detailed explanations. Our materials are regularly updated for 2026, ensuring you have the most current resources to build confidence and succeed on your first attempt.

Microsoft AZ-700 Premium Access Download Demo

Page: 2 / 4
Total 322 questions

Question # 26

You need to provide access to storage2. The solution must meet the PaaS networking requirements and the business requirements.

Which connectivity method should you use?

a service endpoint

a private endpoint

Azure Firewall

Azure Front Door

Question # 27

You need to configure the default route on Vnet2 and Vnet3. The solution must meet the virtual networking requirements.

What should you use to configure the default route?

route filters

BGP route exchange

a user-defined route assigned to GatewaySubnet in Vnet1

a user-defined route assigned to GatewaySubnet in Vnet2 and Vnet3

Question # 28

You need to connect Vnet2 and Vnet3. The solution must meet the virtual networking requirements and the business requirements.

Which two actions should you include in the solution? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point.

On the peerings from Vnet2 and Vnet3, select Use remote gateways.

On the peering from Vnet1, select Allow forwarded traffic.

On the peering from Vnet1, select Use remote gateways.

On the peering from Vnet1, select Allow gateway transit.

On the peerings from Vnet2 and Vnet3, select Allow gateway transit.

Question # 29

You need to plan the deployment of LBGW1. The solution must support the planned changes.

What should you include in the solution? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Question # 30

You ate configuring the DNS forwarding luleset for DNSR1

You need to configure the destination IP address for azure.proseware.com and for corp.proseware.com. The solution must meet the general requirements.

Which IP addiesses should you configure for each namespace? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Question # 31

You need to configure connectivity between NYCNet and SFONet. The solution must meet the connectivity requirements. What should you do? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

Question # 32

You need to identify which IP address space to allocate for the planned deployment of PRDNS1 to HubVNet and SpokeVNet. The solution must meet the general requirements

What should you identify for each virtual network? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.

Question # 33

You need to configure APPGW1 to support end-to-end encryption. The solution must meet the security requirements. What should you do?

From the SSL settings, upload a TLS client certificate that is issued by the internal root CA and includes the full certificate chain.

From the Backend settings, upload a wildcard TLS certificate that has a private key issued by the internal root CA

From the Backend settings, upload the internal root CA certificate.

From the SSL settings, upload a TLS client certificate that is issued by the internal root CA.

Question # 34

You need to configure a custom rule for APPGWI-WAFPolicy to allow only connections that originate from FD1. The solution must support the planned changes.

Which Match type and Match variable should you select?

String and RequestCookies

IP address and RemoteAddr

String and RequestHeaders

Geo location and RemoteAddr

Question # 35

You need to manage connectivity from NYCNet to the Azure services that use private endpoints. The solution must meet the security requirements. What should you do first?

Add a route table to SUBNET-PL

Enable a network policy for SUBNET-PE.

From Azure Virtual Network Manager, create a security admin configuration.

From Azure Viitual Network Manager, create a network group that has Member type set to Subnet

Question # 36

You need to configure a security rule for APPGW1-NSG1. The solution must support the planned changes. Which service tag should you use?

AzureFrontDoor.FirstParty

AzureFrontDoor.Infra

AzureFrontDoor.Backend

AzureFrontDoor.Frontend

Question # 37

You need to deploy Azure Virtual Network Manager. The solution must support the planned changes and meet the connectivity requirements.

Which four actions should you perform in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order.

Question # 38

You need to configure FD1 to provide user access to app2.proseware.com. The solution must meet the security requirements and the general requirements.

What should you do first?

Add a custom domain to FD1.

Add a security policy to FD1.

Request a certificate from a trusted root CA.

Export the TLS certificate and the private key from App2.

Question # 39

You need to configure GW1 to meet the network security requirements for the P2S VPN users.

Which Tunnel type s hould you select in the Point-to-site configuration settings of GW1?

IKEv2 and OpenVPN (SSL)

IKEv2

IKEv2 and SSTP (SSL)

OpenVPN (SSL)

SSTP (SSL)

Question # 40

For each of the following statements, select Yes if the statement is true. Otherwise, select No.

NOTE: Each correct selection is worth one point.

Question # 41

In which NSGs can you use ASG1 and to which virtual machine network interfaces can you associate ASG1? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.