Firewall PBQs: Exam AZ-500: Microsoft Azure Security Technologies
easyQuestion 1 of 3
You are a security engineer reviewing the NSG attached to a web application VM in Azure. A security audit has found that RDP (port 3389) is open to the entire internet, which violates your organization's security policy. RDP access should only be permitted from the management subnet (10.0.4.0/24). HTTPS traffic from the internet must remain accessible. Review the current inbound security rules and correct the misconfiguration.
Firewall Rules
| # | Direction | Source | Port | Protocol | Action | Order | |
|---|---|---|---|---|---|---|---|
| 1 | inbound | any | 443 | tcp | allow | ||
| 2 | inbound | any | 3389 | tcp | allow | ||
| 3 | inbound | any | any | any | deny |
Rules are evaluated top to bottom. Use ▲▼ to reorder.
Progress
0 of 3 rules correctEdit or add rules to configure the firewall, then mark complete
0 of 3 marked complete