Courseiva

AZ-305 · topic practice

VPC practice questions

Use this page to practise AZ-305 VPC practice questions. The goal is not to memorise dumps, but to understand the concept, review the explanation and improve your exam readiness.

8 questionsDomain: VPC
Practice 10 questionsBrowse domain →

What the exam tests

What to know about VPC

VPC questions test whether you can apply the concept in context, not just recognise a definition.

How the topic appears in realistic exam-style scenarios.

Which detail in the question changes the correct answer.

How to eliminate plausible but wrong options.

How to connect the question back to the wider exam objective.

Practice set

VPC questions

8 questions · select your answer, then reveal the explanation

Question 1hardmultiple choice
Full question →

A company has a hub-spoke network topology in Azure. They have multiple spoke VNets connected to a hub VNet via peering. They need to ensure that all east-west traffic between spoke VNets goes through a network virtual appliance (NVA) in the hub for inspection. Additionally, all outbound internet traffic from spoke VMs must use a single public IP address. What should they configure?

Full question →
Question 2hardmultiple choice
Full question →

A company is designing a hub-spoke network topology in Azure. The hub contains a third-party network virtual appliance (NVA) for inspection. Spokes need to communicate with each other, and all inter-spoke traffic must be routed through the NVA in the hub. Which configuration should they use?

Full question →
Question 3mediummultiple choice
Full question →

A company has Azure virtual networks (VNets) in three different Azure regions and an on-premises data center connected via ExpressRoute. They need to connect all VNets to each other and to on-premises over the Microsoft global backbone. They also require centralized management of routing and the ability to enforce security policies such as forced tunneling for internet-bound traffic. Which Azure service should they use?

Full question →
Question 4hardmultiple choice
Full question →

A company has multiple Azure VNets deployed in a hub-spoke topology. They want to inspect all outbound internet traffic from spoke VMs using a central firewall and ensure that traffic from all VNets goes through the firewall before reaching the internet. They also need to log all outbound connections. Which architecture should they implement?

Full question →
Question 5easymultiple choice
Full question →

A company is designing a virtual network architecture for a three-tier application (web, application, database). They want network isolation between tiers and secure access from the internet to the web tier only. Which Azure networking solution should they use?

Full question →
Question 6hardmultiple choice
Full question →

A company has multiple Azure virtual networks (VNets) in different regions and an on-premises data center connected via ExpressRoute. They need to implement a hub-and-spoke topology where a hub VNet hosts shared network virtual appliances (NVAs) for traffic inspection. All traffic between spokes and between spokes and on-premises must be routed through the hub. The company wants to minimize the administrative overhead of configuring and maintaining routing. Which Azure solution should they implement?

Full question →
Question 7hardmultiple choice
Full question →

A company has multiple Azure virtual networks (VNets) spread across three Azure regions (West US, East US, and West Europe). They also have an on-premises network connected to East US via ExpressRoute. They need to connect all VNets to each other and to the on-premises network. They require centralized management of routing and the ability to enforce security policies such as forcing all internet-bound traffic from any VNet to pass through a central firewall in East US. Which Azure solution should they implement?

Full question →
Question 8hardmultiple choice
Full question →

A company runs a multi-tier application on Azure virtual machines (VMs) in the West US region. The application consists of a web tier, an application tier, and a database tier. They need to implement a disaster recovery plan to a secondary region (East US) with a recovery point objective (RPO) of 5 minutes and a recovery time objective (RTO) of 15 minutes. The VMs must be recovered in the correct order: database tier first, then application tier, then web tier. The company also wants to test the recovery process periodically without affecting production. They need to ensure that after failover, the VMs retain their IP addresses to minimize DNS propagation delays. Which combination of Azure Site Recovery features should they use?

Full question →
Continue with 20-question session →

Watch out for

Common VPC exam traps

  • Answering from memory before reading the full scenario.
  • Missing a constraint such as cost, availability, security, scope or command context.
  • Choosing a broad answer when the question asks for the most specific fix.
  • Ignoring why the wrong options are tempting.

Free account

Track your progress over time

Create a free account to save your results and see which topics improve across sessions.

Sign up freeLog in

Focused VPC sessions

Start a VPC only practice session

Every question in these sessions is drawn from the VPC domain — nothing else.

10 questions20 questions30 questions50 questions
Browse all VPC questions →Mixed AZ-305 session

Related practice questions

Related AZ-305 topic practice pages

Move into related areas when this topic feels solid.

SAA-C03 VPC practice questions

Practise AZ-305 questions linked to SAA-C03 VPC.

SAA-C03 S3 lifecycle policy questions

Practise AZ-305 questions linked to SAA-C03 S3 lifecycle policy questions.

SAA-C03 RDS Multi-AZ questions

Practise AZ-305 questions linked to SAA-C03 RDS Multi-AZ questions.

SAA-C03 IAM policy practice questions

Practise AZ-305 questions linked to SAA-C03 IAM policy.

SAA-C03 Route 53 failover questions

Practise AZ-305 questions linked to SAA-C03 Route 53 failover questions.

SAA-C03 CloudFront practice questions

Practise AZ-305 questions linked to SAA-C03 CloudFront.

SAA-C03 NAT gateway questions

Practise AZ-305 questions linked to SAA-C03 NAT gateway questions.

SAA-C03 VPC endpoint questions

Practise AZ-305 questions linked to SAA-C03 VPC endpoint questions.

SAA-C03 Auto Scaling practice questions

Practise AZ-305 questions linked to SAA-C03 Auto Scaling.

SAA-C03 disaster recovery questions

Practise AZ-305 questions linked to SAA-C03 disaster recovery questions.

SAA-C03 high availability questions

Practise AZ-305 questions linked to SAA-C03 high availability questions.

SAA-C03 cost optimization questions

Practise AZ-305 questions linked to SAA-C03 cost optimization questions.

Frequently asked questions

What does the AZ-305 exam test about VPC?
VPC questions test whether you can apply the concept in context, not just recognise a definition.
How should I use these practice questions?
Select your answer before revealing the explanation. Then read why each option is right or wrong — this active recall approach builds retention far faster than re-reading notes.
Can I practise just VPC questions in a focused session?
Yes — the session launcher on this page draws every question from the VPC domain. Use a 10-question session first to gauge your baseline, then move to 20 or 30 once the weak spots are clear.
Where can I practise other AZ-305 topics?
Use the topic links above to move to related areas, or go back to the AZ-305 question bank to see all topics.
Are these real exam questions or dumps?
These are original practice questions written to test the same concepts the AZ-305 exam covers. They are not copied from any real exam or dump site.