-
Review Mode Set 3 – AZ-104 Question 15
updated 6 days, 22 hours ago
2 Members
·
4
Posts
-
Hi, I’m a little confused by one of the answers to this question. The screenshot of connection monitor from TD1 to TD2 says that TD2 is unreachable via TCP (screenshot attached). I’m not sure why the answer to “TDNSG1 is associated with the network interface of TD2” is yes. I don’t see how it can be if the connection monitor shows unreachable.
If the statement is true, the rule with the lowest priority (300) should apply and the processing should stop. This should allow the TCP connection between TD1 and TD2 (attached), but the image of the of connection monitor is showing that TD1 cannot reach TD2 via TCP. If TDNSG1 is associated with the network interface of TD2 what blocked the connection shown in the connection monitor image? I definitely could be misunderstanding what is happening here, so I just need some clarification. Thank you for your help!
-
Hello, Tyler L.
Thank you for reaching out!
The security rules within TDNSG1 are actively filtering inbound traffic for TD2 because all of its rules explicitly target the destination subnet 10.0.2.0/24 (where TD2 is connected).
As mentioned in the explanation, the issue is not caused by TDNSG1 blocking traffic, but rather that TD2 is not listening on port 443. Even though the NSG allows the connection, if no service is actively listening on port 443, the connection attempt will fail.
I hope this helps! Let us know if you need further assistance.
Regards,
JR @ Tutorials Dojo-
Thank you!
-
No worries, Tyler! Feel free to let us know if you need further assistance.
-
-
Log in to reply.