Question No. 1

Azure Firewall (native services):

SELECT THE CORRECT ANSWER

APerform Load Balancing and SNAT automatically

BHandles UDR updates and route propagation for all peered spoke VNETs

CIs encrypting the traffic in transit

DBy default provides Malware protection, IDS (intrusion Detection) and IPS.....

Show Answer

Correct Answer: A

Azure Firewall includes the following features: Built-in high availability

* Availability Zones

* Unrestricted cloud scalability

* Application FQDN filtering rules

* Network traffic filtering rules

* FQDN tags

* Service tags

* Threat intelligence

* Outbound SNAT support

* Inbound DNAT support

* Multiple public IP addresses

* Azure Monitor logging

* Forced tunneling

* Certifications

Question No. 2

Choose the two best statements that describe challenges of deploying a NextGen Firewall (NGFW) in public cloud. (Choose 2)

AReduced visibility due to NAT

BFirewalls can only be deployed in Active/Standby

CReduced firewall feature availability

DReduced effective throughput of the NGFW

EFirewalls can only be deployed in Active/Active

Show Answer

Correct Answer: A, C

The Aviatrix Next Generation Transit Network is built upon the AWS Transit Gateway to provide

better security, scalability and functional capabilities that are important for dynamic AWS implementations.

Aviatrix was a launch partner of the AWS Transit Gateway (TGW). The Aviatrix advanced features were built in

collaboration with the AWS product team.

Visibility: Aviatrix is the go-to partner for AWS when it comes to networking and routing. With the introduction

of the AWS TGW, Aviatrix has built robust visualization tools that lets you plan and implement connection

architectures that span Accounts, Regions and Clouds.

Question No. 3

Customer has an Aviatrix Controller deployed in AW5 and wants to back up the Aviatrix Controller configuration. Where would the backup file be saved?

AAn S3 bucket

BSFTP Server

COn one of the Aviatrix Gateways

DFTP Server

Show Answer

Correct Answer: A

Aviatrix stores the Controller backup in an AWS S3 bucket or an Azure Container. Before you

begin, determine where you would like to store the backup and create either the S3 bucket or Azure

Container.

Question No. 4

ACE Inc. has a Direct Connect for their on-premise location to connect to AWS. Security team has recently been notified of issues where employees and contractors working from the on-premise location are using non-corporate (personal or public) S3 buckets using ACE Inc.'s Direct Connect. This is overwhelming the Direct Connect and also showing the source of traffic to these S3 buckets as ACE Inc. which has potential compliance and security risks.

As a cloud architect, you are tasked with securing the Direct Connect for specific ACE Inc. corporate S3 buckets access only. Which Aviatrix feature can help ACE Inc. overcome this problem?

AAviatrix FlightPath

BAviatrix CoPilot

CAviatrix Private S3

DAviatrix Multi-Account Onboarding

Show Answer

Correct Answer: C

Aviatrix PrivateS3 is a feature that allows you to leverage AWS Direct Connect to transfer

objects and files between on-prem and S3 while giving you control of the S3 buckets by the ability to

whitelist the S3 buckets.

Question No. 5

Which AWS feature does Aviatrix integrate with to provide Public Subnet Filtering for Ingress Internet Traffic to a VPC?

AAWS GuardDuty

BAWS Shield

CAWS WAF

DAWS inspector

Show Answer

Correct Answer: A

Free Aviatrix ACE Exam Actual Questions

The questions for ACE were last updated On Jan 18, 2025