Aviatrix ACE Exam Practice Test Instant Access

Question 1

Can the Aviatrix platform help you interconnect VPCs/VNets/VCNs with overlapping IP address ranges?

AYes, using standard encrypted peering

BYes, using S2C (Site-to-Cloud)

CYes, using FiightPath

DNo

Answer : B

Site2Cloud builds an encrypted connection between two sites over the Internet, in an easy to

use and template driven manner. Its workflow is similar to AWS VGW or Azure VPN.

Overlapping IP addresses The CIDR blocks at your customer sites are not controlled by us. If CIDR

block overlaps with our operation VPC CIDR, we have to find a way to NAT the address. The cloud

provider native solution is not usable in this case. The Aviatrix site2cloud solution solves this problems:

Question 2

As a Cloud Networking Consultant, you are reviewing a Microsoft Azure network design that will be using Microsoft Azure ExpressRoute Edge routers as transit for inter-VNet communication. What are some known challenges with this design pattern?

AMultiple customers using same edge router may create noisy neighbor issues

BLack of visibility into traffic at the edge routers

CNo granular control to be able to route VNets selectively

DAll of the above

Answer : D

Question 3

What are the connectivity options for customers to access Azure?

AInternet Only

BVPN and Express Route

CInternet, VPN, and DirectConnect

DInternet, VPN, ExpressRoute

Answer : D

Basically, there are 4 options for consumers to access Azure:

* Internet connectivity.

* Point-to-site VPN (P2S VPN)

* Site-to-Site VPN (S2S VPN)

* ExpressRoute.

Question 4

ACE Inc. has a Direct Connect for their on-premise location to connect to AWS. Security team has recently been notified of issues where employees and contractors working from the on-premise location are using non-corporate (personal or public) S3 buckets using ACE Inc.'s Direct Connect. This is overwhelming the Direct Connect and also showing the source of traffic to these S3 buckets as ACE Inc. which has potential compliance and security risks.

As a cloud architect, you are tasked with securing the Direct Connect for specific ACE Inc. corporate S3 buckets access only. Which Aviatrix feature can help ACE Inc. overcome this problem?

AAviatrix FlightPath

BAviatrix CoPilot

CAviatrix Private S3

DAviatrix Multi-Account Onboarding

Answer : C

Aviatrix PrivateS3 is a feature that allows you to leverage AWS Direct Connect to transfer

objects and files between on-prem and S3 while giving you control of the S3 buckets by the ability to

whitelist the S3 buckets.

Question 5

What is/are the protocol(s) supported by Aviatrix Site2Cloud (S2C) Gateway?

AGRE

BUDP only

CBoth TCP and UDP

DTCP only

Answer : C

Question 6

What are some limitations of using Public Cloud Provider's (AWS, Azure, GCP, OCl) native VPN Gateways that network engineers must account for in their deployments? (Choose 2)

ANo support for NAT which becomes problematic in case of overlapping IPs and connecting to (customer and partner) sites where IP allocation is out of your administrative control

BNo support for Active/Active deployment

CInability to use common troubleshooting tools like ping, traceroute

DOnly support UDP

Answer : A, C

Question 7

Where is the 'center of gravity' in the new computing model?

APublic Cloud

BPrivate Cloud

COn Prem

DProvider

Answer : A

Aviatrix Certified Engineer (ACE) Program ACE Exam Practice Test