Implementing Cisco Application Centric Infrastructure (DCACI) — Question 196

An engineer configures a one-armed policy-based redirect service insertion for an unmanaged firewall. The engineer configures these Cisco ACI objects:
• a contract named All_Traffic_Allowed
• a Layer 4 to Layer 7 device named FW-Device
• a policy-based redirect policy named FW-1Arm-Policy-Based RedirectPolicy

Which configuration set redirects the traffic to the firewall?

Answer options

• A. Configure a policy-based redirect subject. Associate the policy-based redirect subject with All_Traffic_Allowed.
• B. Configure a firewall bridge domain. Associate the bridge domain with FW-Device.
• C. Configure a device interface policy. Associate the device interface policy with FW-Device.
• D. Configure a service graph. Associate the service graph with All_Traffic_Allowed.

Correct answer: D

Explanation

The correct answer is D because configuring a service graph and associating it with the contract allows the traffic to be redirected through the firewall as intended. Options A, B, and C do not establish the necessary linkage or configuration for forwarding traffic to the firewall effectively.