Latest NSE7_PBC-7.2 Practice Tests

Premium

NSE7_PBC-7.2 Dumps - Full Mock Test

Fortinet NSE 7 - Public Cloud Security 7.2

59 Questions
120 MINUTES
2024-11-07 Updated

Full Access

QUESTION 16

Refer to the exhibit
NSE7_PBC-7.2 dumps exhibit
You are tasked to deploy a FortiGate VM with private and public subnets in Amazon Web Services (AWS).
You examined the variables.tf file.
What will be the final result after running the terraform init and terraform apply commands?

A. Terraform will not deploy a FortiGate VM
B. Terraform will deploy a FortiGate VM in the eu-West-Ia region with private and publicsubnets.
C. Terraform will deploy a FortiGate VM in the eu-West-1a region with two subnets and byol license.
D. Terraform will deploy a FortiGate VM in the eu-West-Ia region without any subnets.

Correct Answer: B
The variables.tf file shows that the FortiGate VM will be deployed in the eu-West-Ia region with private and public subnets. The region variable is set to ??eu-west-1?? and the availability_zone variable is set to ??eu-west-1a??. The vpc_id variable is set to ??vpc- 0e9d6a6f?? and the subnets variable is set to a list of two subnet IDs: ??subnet-0f9d6a6f?? and ??subnet-1f9d6a6f??. The license_type variable is set to ??on-demand?? and the ami_id variable is set to ??ami-0e9d6a6f??.
References: https://docs.fortinet.com/document/fortigate/6.4.0/aws- cookbook/236478/deploying-fortigate-vm-on-aws-using-terraform

QUESTION 17

Which two attachments are necessary to connect a transit gateway to an existing VPC with BGP? (Choose two )

A. A transport attachment
B. A BGP attachment
C. A connect attachment
D. A GRE attachment

Correct Answer: AC
The correct answer is A and C. A transport attachment and a connect attachment are necessary to connect a transit gateway to an existing VPC with BGP.
According to the AWS documentation for Transit Gateway, a transit gateway is a network transit hub that connects VPCs and on-premises networks. To connect a transit gateway to an existing VPC with BGP, you need to do the following steps:
✑ Create a transport attachment. A transport attachment is a resource that connects a VPC or VPN to a transit gateway. You can specify the BGP options for the transport attachment, such as the autonomous system number (ASN) and the BGP peer IP address.
✑ Create a connect attachment. A connect attachment is a resource that enables you to use your own appliance to provide network services for traffic that flows through the transit gateway. You can use a connect attachment to route traffic between the transport attachment and your appliance using GRE tunnels and BGP.
The other options are incorrect because:
✑ A BGP attachment is not a valid type of attachment for a transit gateway. BGP is a protocol that enables dynamic routing between the transit gateway and the VPC or VPN.
✑ A GRE attachment is not a valid type of attachment for a transit gateway. GRE is a protocol that encapsulates packets for tunneling purposes. GRE tunnels are established between the connect attachment and your appliance.
[Transit Gateways - Amazon Virtual Private Cloud] : [Transit Gateway Connect - Amazon Virtual Private Cloud]