Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Aviatrix Pro Cert > Quiz > Flashcards

Quiz Flashcards

1
Q

Which of these is FALSE regarding USER VPN Profile Based Security Policies:

  • security based on user, not source ip
  • user can be associated with multiple profiles
  • a profile can be associated with multiple users
  • security policy is manually pushed to the landing aviatrix VPN gateways
A

security policy is manually pushed to the landing Aviatrix VPN gateways is FALSE

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Which of these is FALSE regarding RBAC implementation on Aviatrix Controller

  • UI options shown are same. Only difference is what you are allowed to do
  • Permission groups can be granted access to one or more cloud accounts
  • User MUST be created locally on the Controller
  • Permission groups can be granted access to one or more permission sets
A

Users MUST be created locally on controller is FALSE

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

HPE is also known as:

  • Insane Mode
  • Encryption on steroids (EoS)
  • Ridiculous mode
  • Super Fast Mode
A

Insane Mode

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

How is aviatrix able to perform High Speed Encryption?

  • buy utilizing all available cores to build multiple IPSec tunnels
  • by using offload engines
  • by using underlay switches that support 400 Gbe
  • By using ASICs
A

By utilizing all available cores to build multiple IPSec tunnels

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Where Can ActiveMesh be enabled?

  • Intra/Inter Region
  • Multi-Cloud
  • Cloud-to-On Prem
  • All of the above
A

All of the above

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

How long does route re-convergence take in ActiveMesh primary tunnel fails at Primary Spoke GW?

  • no re-convergence. The tunnel was already active and fwding half the traffic
  • typically less than 5 seconds
  • typically less than a second
  • as long as it takes to build another tunnel
A

No Reconvergence. The tunnel was already active and forwarding half the traffic

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is the easiest way to determine what filters to set using Egress FQDN?

  • Run Egress FQDN discovery
  • Visit microsoft.com to see what IPs to filter office365.com on
  • run a packet capture
  • all of these
A

Run Egress FQDN Discovery

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What other Aviatrix feature does Private S3 Bucket Access use?

  • Site2Cloud
  • Egress FQDN
  • CloudWan
  • FireNet
A

Egress FQDN

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is one of the ways Controller checks the FW instance health?

  • APIs
  • Terraform
  • SNMP
  • All Of these
A

APIs

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Aviatrix Encrypted Transit Firenet Supports which of these?

  • 70 Gbps Thruput per transit VPC
  • load balancing in N-Active mode
  • Active-Active firewalls
  • All of these
A

All of these

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

In a MR/MC Transit FireNet scenario, what do you lose when you replace the Aviatrix Spoke GW’s with Native Constructs?

  • Firewall performance and visibility at the transit level
  • Firewall performance and visibility at the spoke level
  • end-to-end encryption and visibility at transit level
  • End to end encryption & visibility at the spoke level
A

End-to-end encryption and visibility at the spoke level

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

(True of False) - CloudWAN is a specific case of Site2Cloud?

A

True

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

Aviatrix Pro Cert (17 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions