Microsoft Azure Administrator (AZ104) Practice Exam

What is the most effective way to securely share resources between two virtual networks in Azure?

• A. Establish a VPN Gateway connection
• B. Create service endpoints on both VNets
• C. Configure Virtual Network Peering
• D. Use Azure Load Balancer for traffic routing

The correct answer is: Configure Virtual Network Peering

Configuring Virtual Network Peering is the most effective way to securely share resources between two virtual networks in Azure because it allows for seamless communication between those networks. When two virtual networks are peered, they can communicate with each other directly, using private IP addresses without the need for a VPN gateway or public internet routing. This ensures secure and low-latency connections, as the traffic remains within Microsoft's backbone network. Peering provides several advantages. It allows resources to be shared efficiently, meaning virtual machines in one virtual network can communicate with virtual machines in another network without needing to traverse the public internet or go through additional layers of complexity. Additionally, there are no bandwidth limitations or performance issues typically associated with VPN solutions, making it an optimal method for direct resource sharing. Using a VPN Gateway connection, while secure, is generally more suitable for scenarios where networks are geographically separated or require secure access to on-premises resources. Service endpoints allow you to secure your Azure resources to a virtual network, but they do not facilitate direct communication between two separate virtual networks. An Azure Load Balancer, meanwhile, is used for distributing network traffic among multiple servers but does not provide a method for connecting two virtual networks securely. Thus, these alternatives are less efficient for the specific task