DRAG DROP
Aviatrix platform provides rich capabilities around networking, security and operations in public cloud networks. In addition to Aviatrix Transit, it also helps customers overcome limitations of native public cloud constructs. Below, match the Aviatrix platform capability for AWS Transit Gateway (TGW) with the appropriate problem description.
DRAG DROP
Match the Azure transit option below to the description which best describes it:
DRAG THE BOXES TO MATCH THE ANSWERS
A Customer has 100 VPCs in GCP that they want to be able to route between .
What are some of the solutions customers can use. Each option represents a complete solution. (Choose 2)
- A . Google already provides global routing for inter-VPC traffic
- B . Use Aviatrix Transit solution to connect the VPCs with a Transit VPC running Aviatrix Gateways
- C . Manually configure routing tables in each VPC
- D . Use Google Routers
- E . Build full mesh connectivity using VPC Peering
Operations team has noticed that during the peak working hours, Aviatrix Gateway’s throughput utilization stays around 80% of the current instance size. A decision has been made to scale up the instance size to provide more throughput .
Which below statement accurately describes instance sizing of Aviatrix Gateways?
- A . Aviatrix Gateways can scale down but not scale up
- B . Aviatrix Gateways instance size has to be chosen at deployment and can’t change later
- C . Aviatrix Gateways can scale up but not scale down
- D . Aviatrix Gateways can scale up and down both
Choose the two best statements that describe challenges of deploying a NextGen Firewall (NGFW) in public cloud. (Choose 2)
- A . Reduced visibility due to NAT
- B . Firewalls can only be deployed in Active/Standby
- C . Reduced firewall feature availability
- D . Reduced effective throughput of the NGFW
- E . Firewalls can only be deployed in Active/Active
ACE Inc. is currently using AWS Transit Gateway (TGW) with 100 VPCs attached to it from different security domains.
These 100 VPCs are used as following:
* 20 VPCs belong to Production,
* 40 VPCs belong to Development,
* 20 are part of UAT and
* 20 VPCs are for shared services and miscellanous common needs.
ACE Inc. requirements are to:
* provide network and traffic segmentation between Prod, Development, UAT VPCs such that there is no traffic between VPCs belonging to different domains
* allow all VPCs in each domain to communicate with each other
* allow every VPC access to shared services VPCs
Which Aviatrix feature would help to not only provide this segmentation but also decrease the complexity of this topology and routing configuration by orchestrating life-cycle management of AWS Transit Gateways? (Choose 2)
- A . Aviatrix AWS-TGW Encrypted Peering
- B . Aviatrix TGW Orchestrator
- C . Aviatrix Security Domain
- D . Aviatrix Slte-io-Cloud (S2C)
Which networking entity in the cloud infrastructure allows operators to run commands to see BGP state, route tables, diagnostic, logs etc.
- A . AWSVPC Implicit Router
- B . Azure VNET Router
- C . Google Cloud Router
- D . Aviatrix Gateway
DRAG DROP
Aviatrix platform has several operational features and capabilities built-in to help network engineers perform day to day operational tasks.
Below, match the Aviatrix platform feature with the operational problem it addresses.
AWS Guard Duty automatically enforces its findings through the ingress routing feature, blocking the traffic by default. SELECT THE CORRECT ANSWER
- A . False
- B . True
The IPSec tunnels terminating at AWS TGW/VGW, Azure VPN GW, and other native VPN support interconnecting networks with overlapping IP ranges SELECT THE CORRECT ANSWER
- A . False
- B . True
An example of when would you use Aviatrix FlightPath is:
- A . To insert Firewall into traffic path between 2 VPCs
- B . To connect your branch office to the cloud resources
- C . To view controller logs
- D . To troubleshoot connectivity between EC2 instances in 2 AWS VPCs
An example of a Network Virtual Appliance (NVA) would include which of the following. SELECT THE CORRECRT ANSWER
- A . Virtual Network Gateway (VNG)
- B . Azure Load Balancer
- C . UDR
- D . Palo Alto Firewall
What native methods are available to configure Public Cloud Networks using Aviatrix Controller? (Choose 3)
- A . Bash
- B . REST API
- C . Ul (User Interface)
- D . Powershell
- E . Terraform
The feature in Aviatrix Controller that allows customers to see path between two instances/AMI/EC2/VM (including, but not limited to Security Groups, ACLs, Routes, etc.) is called:
- A . FlightPath
- B . Netflow
- C . FlightControl
- D . Network Connectivity Test
What is a challenge of using ExpressRoute Edge Routers as transit to interconnect VNets in Azure?
- A . Not recommended by Microsoft Product Group / not officially documented
- B . BW limited by ExpressRoute Gateway SKU
- C . Limited Control of routing propagation
- D . All of the above