Which two key components are related to one firewall per ISP design option for e-commerce?

Which two key components are related to one firewall per ISP design option for e-commerce?
(Choose two.)

Which two key components are related to one firewall per ISP design option for e-commerce?
(Choose two.)

A.
It is a common approach to single-homing.

B.
This approach is commonly used in large sites.

C.
Any failure on an edge router results in a loss of session.

D.
It has one NAT to two ISP-assigned blocks.

E.
It is difficult to set up and administer.

Show Hint

Leave a Reply 2

Your email address will not be published. Required fields are marked *

mahmoud

mahmoud

common approach to dual-homing (connecting a site to two ISPs
using a router, a firewall, or both to connect to each ISP). This approach is commonly
used in small sites because it is relatively easy to set up and administer.

External DNS resolves the organization’s site name to an address from either ISP’s external
address block (172.16.1.0/24 or 172.20.1.0/24 in Figure 7-14). If DNS resolves using a
round-robin approach, external users are approximately load balanced across the two
paths to the organization’s web server. The traffic is routed to the outside of the relevant
NAT device or firewall.

An issue with this design is that any failure on an edge router results in a loss of session
because the failover between edge routers is not performing stateful NAT.

Reply