Module 3 Flashcards
What is a Computer Network?
A computer network is made of two or more computers that are connected either by cables (wired) or WiFi (wireless). A network’s purpose is to transmit, exchange, or share data and resources. It is built by using hardware (e.g., routers, switches, access points, and cables) and software (e.g., operating systems or business applications). Geographic location often defines a computer network.
Types of networks
ALAN (local area network) connects computers in a defined physical space, like an office building.
A WAN (wide area network)connects computers across over larger areas, like continents. The internet is the largest example of a WAN.
A VPN (virtual private network) is a secure, point-to-point connection between two network end points or nodes.
Gateway appliances
are devices that give enhanced control over network traffic, accelerate the network’s performance, and give the network a security boost. They are also used to manage physical and virtual networks for routing multiple Virtual Local Area Networks (VLANs), for firewalls, VPN, traffic shaping and more.
Direct Link
secures and accelerates data transfer between private infrastructure, multi-clouds, and the IBM Cloud. It provides maximum isolation from other network traffic.
Cloud Internet Services
are security and performance capabilities designed to protect public-facing web content and applications before they reach the cloud.
Virtual routing and forwarding
s a technology that is included in IP network routers. It is delivered as an inherent backbone service.
Load Balancers
With IBM Cloud load balancers, a user can load balance traffic among different servers to help improve uptime. A user can also easily scale their applications by adding or removing servers, with minimal disruption to traffic flows.
Direct Link Service on Classic
IBM Cloud Direct Link on Classic offerings provide connectivity from an external source into a customer’s IBM Cloud private network.
Virtual Private Cloud
IBM Cloud VPC is a virtual network that is tied to a customer account. It gives cloud security by providing fine-grained control over a virtual infrastructure and a network traffic segmentation along with the ability to scale dynamically.
Access control lists
rovide a means to protect information stored in a LDAP directory. Administrators use ACLs to restrict access to different portions of the directory, or specific directory entries.
Multi-regions Architectures
In a multi-region architecture, an application is deployed to different locations where each region runs an identical copy of the application. A region is a specific geographical location where a user can deploy apps, services, and other IBM Cloud resources. IBM Cloud regions:
What is IBM Cloud Transit Gateway?
IBM Cloud Transit Gateway helps a user connect and manage an IBM Cloud Virtual Private Cloud (VPC) networks. It is used to connect cloud native apps, extend applications, help workloads communicate, manage capacity, and connect VPCs (even if they have different internet access).
IBM Cloud Gateway Appliance
IBM Cloud Gateway Appliances allow a user to selectively route private and public network traffic via a full-featured enterprise level firewall powered by the software features of VyOS, JunOS or any other chosen operating system, such as full routing stacks, QoS and traffic sharing, policy-based routing, and VPN.
Firewall
IBM Cloud Gateway Appliances deploy to protect an environment from external and internal threats by filtering both private and public facing traffic. Customers can manage the appliances themselves by defining policies and rules to allow or deny (among other actions) inbound or outbound network traffic, protecting their applications from internal and external users. Both IPv4 and IPv6 stacks are supported in a stateful manner.
Virtual Private Network (VPN) gateway
Connect an on-site data center or office to the IBM Cloud using VPN tunneling by provisioning a vSRX or VRA as a network gateway device
Network Address Translation (NAT)
With IBM Cloud Gateway Appliances, a user can provision application and database servers without public network interfaces while still allowing servers to access the internet using source NAT.
Enterprise-grade routing
or multi-tiered applications on different isolated networks, the appliances enable a user to build connectivity between these networks with greater flexibility.
VLANs and the gateway appliance’s role
A VLAN is a mechanism that segregates a physical network into many virtual segments. Traffic from multiple selected VLANs can be delivered through a single network cable, a process commonly called “trunking.”
Which is a true statement about Access Control Lists (ACLs)?
t has rules that are organized, prioritized, and considered in sequence.
Which of the following is a benefit of VLAN Spanning?
It enables all devices on an account to communicate with each other using the private network.
What VPC component makes it possible for an application, that is hosted on a virtual private cloud, to connect with an external database that is hosted on IBM Cloud classic bare metal servers?
Transit Gateway
Which of the following is a type of Load Balancer available from IBM?
B.Network Load Balancer
C.Application Load Balancer
What can be deployed to a single region AND can span multiple zones?
Virtual Private Cloud
Which of the following is a benefit of Virtual Routing and Forwarding (VRF)?
Industry-proven and widely accepted multiple isolation separation technologies.
This component can be used to connect a subnet to the public internet on a virtual private cloud component.
A public gateway
If a client has a requirement that includes a non-IBM appliance in the IBM Cloud, what appliance should be used?
Bring your own Appliance (BYOA)
Which of the following are benefits of deploying a solution across multiple regions?
A.Improvement of user experience by deploying resources closer to their point of origin
B.The ability to recover quickly in the event a region fails
C.The ability to store user data in their region
What can be used to design customized network topologies?
BYOIP
