A company is using third-party firewall appliances to monitor and inspect traffic on prem…

Question

A company is using third-party firewall appliances to monitor and inspect traffic on premises. The company wants to use the same model on AWS. The Company has a single VPC with an internet gateway. The VPC has a fleet of web servers that run on Amazon EC2 instances that are managed by an Auto Scaling group. The company’s network team needs to work with the security team to establish inline inspection of all packets that are sent to and from the web servers. The solution must scale as the fleet of virtual firewall appliances scales Which combination of steps should the network team take to implement this solution? (Choose three.)

Accepted Answer

Correct answer: A, C, F. A. Create a new VPC, and deploy a fleet of firewall appliances. Create a Gateway Load Balancer. Add the firewall appliances as targets. — C. Create a security group for use with the firewall appliances, and allow port 6081. Allow a port for the Gateway Load Balancer to perform health checks. — F. Create a new route table inside the web server VPC. Create a new edge association with the internet gateway. Update the internet gateway route table and the web server route table to send traffic to and from the internet to the VPC endpoint ID of the Gateway Load Balancer. Update the subnet route table that is associated with the Gateway Load Balancer endpoint to direct internet traffic to the internet gateway. — The correct steps involve creating a new VPC and deploying the firewall appliances (A), allowing the correct ports in the security group for health checks (C), and updating the route tables to ensure proper traffic direction (F). Options B and D do not correctly outline the steps needed to achieve the inline inspection or do not align with the requirement for a new setup, and option E is incomplete without the new VPC setup.

AWS Certified Advanced Networking – Specialty (ANS-C01) — Question 209

Answer options

Correct answer: A, C, F

Explanation