Aviatrix Certified Engineer (ACE) Program ACE Exam Practice Test

Page: 1 / 14
Total 72 questions
Question 1

ACE Inc. currently uses AWS as their primary cloud provider with a strong desire to expand to Azure and GCP. IT team has strict security and control requirements from different business units that require isolation and control from each other. The different business units want

* to own their own transit architecture

* the ability to control firewall rules for their own application

* to not share same transit with other business units but have ability to connect to other business units if needed

The architecture board has mandated that there needs to be a single design pattern that accommodates above requirements irrespective of the public cloud vendor being used.

Choose the best design option to meet above needs. Each option presents a complete solution.



Answer : C

As here AWS is Primary Cloud Provider.

With Aviatrix You can Bring your own firewall to the cloud. Pre-integrated with Next-Generation Firewalls

to enable inline inspection of VPC traffic to maximize security and performance.

Multicloud and Multi-Region is the new normal: With Aviatrix You can support your business needs for onprem and multiple cloud providers. Instead of managing different cloud vendor gateways, Aviatrix NextGeneration Transit Network lets you abstract away the networking differences between AWS, Azure, Google

and Private Cloud.


Question 2

You can peer AWS TGWs within a Region

SELECT THE CORRECT ANSWER



Answer : A


Question 3

What is a challenge of using ExpressRoute Edge Routers as transit to interconnect VNets in Azure?



Answer : D


Question 4

What are the connectivity options for customers to access Azure?



Answer : D

Basically, there are 4 options for consumers to access Azure:

* Internet connectivity.

* Point-to-site VPN (P2S VPN)

* Site-to-Site VPN (S2S VPN)

* ExpressRoute.


Question 5

Private, Public, Transit VIFs (Virtual interfaces) are terms related to which...

SELECT THE CORRECT ANSWER



Answer : C

(AWS Direct Connect virtual interfaces)

You must create one of the following virtual interfaces to begin using your AWS Direct Connect

connection.

Private virtual interface: A private virtual interface should be used to access an Amazon VPC using

private IP addresses.

Public virtual interface: A public virtual interface can access all AWS public services using public IP

addresses.

Transit virtual interface: A transit virtual interface should be used to access one or more Amazon VPC

Transit Gateways associated with Direct Connect gateways. You can use transit virtual interfaces with

1/2/5/10 Gbps AWS Direct Connect connections. For information about Direct Connect gateway

configurations, see Direct Connect gateways.

More Details:


Question 6

AWS Guard Duty automatically enforces its findings through the ingress routing feature, blocking the traffic by default.

SELECT THE CORRECT ANSWER



Answer : A

monitoring service that analyzes and processes the following Data sources.


Question 7

Azure Firewall is cost effective.



Answer : A

(Azure Firewall is cost effective.)

Azure Firewall pricing includes a fixed hourly cost ($1.25/firewall/hour) and a variable per GB processed

cost to support auto scaling. Based on our observation, most customers save 30 percent -- 50 percent in

comparison to an NVA deployment model. We are announcing a price reduction, effective May 1, 2019,

for the firewall per GB cost to $0.016/GB (-46.6 percent) to ensure that high throughput customers

maintain cost effectiveness. There is no change to the fixed hourly cost.


Page:    1 / 14   
Total 72 questions