Thursday, November 30, 2023

Aviatrix SE

AWS Public VIF for DirectConnect announces the CIDR ranges of the publicly-available AWS services
a. the selected publicly-available services from all AWS regions
b. the selected publicly-available services from the selected AWS region
c. all publicly- available services from all AWS regions
d. all publicly-available services from the selected AWS region

Private, Public, Transit VIFs (Virtual Interfaces) are terms related to which Cloud element?
a. Azure ExpressRoute
b. AWS Virtual Private Gateway (VGW)
c. AWS DirectConnect
d. AWS Transit Gateway

Azure Firewall (native service):
a. Performs Load Balancing and SNAT automatically
b. Handles UDR updates and route propagation for all the peered spoke VNETs
c. is encrypting the traffic in transit
d. By default provides Malware Protection, IDS (Intrusion Detection) and IPS (Int… 

The IPSec tunnels terminating at AWS TGW/VGW, Azure VPN GW, and other native VPN option in the public in the public clouds, support interconnecting networks with overlapping IP ranges
a. False
b. True

One difference between Microsoft ExpressRoute circuits as compared to other cloud providers direct connect options, is that ExpressRoute is always provisioned as a redundant  pair with two physical connections to the Microsoft Enterprise Edge Routers (MSEE)?
a. False
b. True

Statefull Firewall rule:
a. Is another name for Azure Active Directory Firewall
b. Requires explicit rule for the return traffic
c. Allows the return traffic implicitly
d. Alone can easily satisfy the enterprise security needs

In an Azure setup where all VNETs are directly peered (full-mesh) using VNET Peering
a. It is easy to insert a centralized FW
b. Peering needs to be broken for VNET CIDR change
c. There are no real limitations for bandwidth
d. ExpressRoute Edge Router does the actual routing

AWS Guard Duty automatically enforces its findings through the ingress routing feature, blocking the malicious traffic by default
a. False
b. True

An example of a Network Virtual Appliance (NVA) in Azure would include which of the following?
a. Virtual Network Gateway (VNG)
b. Azure Load Balancer
c. UDR
d. Pal Alto Firewall

Which Aviatrix feature customer might leverage to help prevent connected partners from affecting cloud routing when peered with dynamic routing protocols?
a. VCN Route Audit
b. BGP Route Approval
c. TGW Audit
d. TGW Orchestrator

at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)