You plan to deploy an Azure App Service web app named App1 that will service users in a single geographical region. App1 will access a highly available database named DB1 that will be hosted on two Azure virtual machines named VM1 and VM2.

You need to recommend a solution that meets the following requirements:

• Uses Azure Web Application Firewall (WAF) to minimize the risk of a web-based attack against App1

• Ensures that administrators can access VM1 and VM2 securely from the internet

• Ensures that traffic from App1 to DB1 is NOT sent via the internet

• Minimizes costs

What should you include in the recommendation for each requirement? To answer, select the appropriate options in the answer area.