New Year Sale ! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Fortinet Exam NSE7_PBC-7.2 Topic 1 Question 9 Discussion

Actual exam question for Fortinet's NSE7_PBC-7.2 exam
Question #: 9
Topic #: 1
[All NSE7_PBC-7.2 Questions]

You have been tasked with deploying FortiGate VMs in a highly available topology on the Amazon Web Services (AWS) cloud. The requirements for your deployment are as follows:

* You must deploy two FortiGate VMs in a single virtual private cloud (VPC), with an external elastic load balancer which will distribute ingress traffic from the internet to both FortiGate VMs in an active-active topology.

* Each FortiGate VM must have two elastic network interfaces: one will connect to a public subnet and other will connect to a private subnet.

* To maintain high availability, you must deploy the FortiGate VMs in two different availability zones.

How many public and private subnets will you need to configure within the VPC?

Show Suggested Answer Hide Answer

Contribute your Thoughts:

Naomi
6 months ago
Exactly. This setup will ensure high availability for our FortiGate VMs in the AWS cloud.
upvoted 0 times
...
Noel
6 months ago
So, in total, we will need four subnets - two public and two private, spread across two availability zones.
upvoted 0 times
...
Raul
6 months ago
Yes, we must ensure each FortiGate VM has one elastic network interface connecting to a public subnet and another connecting to a private subnet.
upvoted 0 times
...
Melinda
6 months ago
That makes sense. And we will also need two private subnets, right?
upvoted 0 times
...
Naomi
6 months ago
I think we will need two public subnets, one for each FortiGate VM.
upvoted 0 times
...
Lavelle
6 months ago
Makes sense. So we should configure 2 public and 2 private subnets within the VPC to meet the deployment requirements.
upvoted 0 times
...
Devora
6 months ago
Exactly, and with the external elastic load balancer distributing traffic to both VMs, having them in different availability zones will ensure high availability.
upvoted 0 times
...
Royal
7 months ago
I agree. So for deploying two FortiGate VMs in different availability zones, we will need a total of 4 subnets - 2 public and 2 private.
upvoted 0 times
...
Lezlie
7 months ago
That makes sense, since each FortiGate VM needs to have one interface in the public subnet and one in the private subnet.
upvoted 0 times
...
Jesus
7 months ago
I think we will need 1 public and 1 private subnet for each FortiGate VM.
upvoted 0 times
...
Chantay
8 months ago
Haha, yeah, no kidding! Can you imagine if one of the subnets was too small and couldn't handle the traffic? The FortiGates would be like 'Sorry, we're at capacity, you're on your own buddy!' Not a great high availability setup. *chuckles*
upvoted 0 times
Vanda
8 months ago
Definitely. We don't want any capacity issues impacting our high availability setup.
upvoted 0 times
...
Glenn
8 months ago
Good point. It's important to ensure our subnets can handle the traffic load.
upvoted 0 times
...
Becky
8 months ago
Exactly. And we'll spread the FortiGate VMs across two availability zones for high availability.
upvoted 0 times
...
Whitley
8 months ago
So, in total, we'll have four subnets altogether.
upvoted 0 times
...
Marshall
8 months ago
That's correct. Each FortiGate VM will connect to one public and one private subnet.
upvoted 0 times
...
Rodrigo
8 months ago
We need two public subnets and two private subnets.
upvoted 0 times
...
...
Shawnda
8 months ago
Yep, that makes sense. The only thing I'd add is that it's important to make sure the subnets are properly sized and routed to support the high availability setup. Don't want any bottlenecks or single points of failure there.
upvoted 0 times
...
Berry
8 months ago
I agree with your analysis, Regenia. The requirement to have the FortiGate VMs in two different availability zones means we need to have duplicate public and private subnets in each zone. So the answer is four subnets - two public and two private.
upvoted 0 times
...
Regenia
8 months ago
Okay, let's think this through step-by-step. We need to deploy two FortiGate VMs in a single VPC, with an external load balancer distributing traffic to them in an active-active topology. Each FortiGate VM needs two network interfaces - one in a public subnet and one in a private subnet. And we need to deploy the VMs in two different availability zones to maintain high availability. So, the key thing I see is that we need a total of four subnets - two public and two private, one of each in each availability zone.
upvoted 0 times
...

Save Cancel