Q: 3
You have an Azure subscription that contains an Azure App Services web app named WebApp1. WebApp1 is accessed by users in multiple Azure regions. You need to secure access to WebApp1. The solution must meet the following requirements:
* Protect against common web vulnerabilities.
* Optimize the routing of traffic from different regions.
What should you use?
Options
Discussion
D . Azure Front Door Premium handles both global load balancing and has integrated WAF, so it checks the boxes for security and optimized routing across regions. A is tricky since App Gateway gives WAF, but it's more regional, not global. CDN (B) won't give you full WAF coverage for web app vulnerabilities. Open to pushback if anyone thinks A fits better somehow.
This looks like one from my exam last year, on the official practice test, pretty sure it's D. If you want more on this, check the Microsoft docs and run through some lab scenarios.
B . CDN can help with global routing and does some basic protection, so feels like a possible trap here.
D tbh, but only because Front Door Premium combines WAF features and global routing. CDN (B) isn't designed for app-level security, mostly just speeds up static content. Application Gateway (A) is regional so doesn't hit the global requirement. I'm not 100% if Firewall (C) could play a role here, but feels less relevant for web app-specific vulns. Anyone disagree?
Call it D for sure. Application Gateway (A) is always tempting but it's regional, so it misses the global optimization part here.
Its D for sure. Front Door Premium covers both WAF protection and geo-optimized routing.
A , since Application Gateway has WAF for security and can handle traffic to the app. Feels close because you get web vuln protection, but maybe I'm missing the global aspect. Anyone else see why this wouldn't fit?
D
saw pretty similar problem in my exam, on the exam, D is correct. Only Front Door Premium meets both security and global traffic needs here.
D imo. Front Door Premium handles both global load balancing and has built-in WAF for app security. A does the firewall but isn't global, CDN is just for speeding content up, not full vuln protection. Not 100% sure if some edge case applies but D covers both points best. Disagree?
Be respectful. No spam.
