Topic 1 Question 77
After a network change window one of your company's applications stops working. The application uses an on-premises database server that no longer receives any traffic from the application. The database server IP address is 10.2.1.25. You examine the change request, and the only change is that 3 additional VPC subnets were created. The new VPC subnets created are 10.1.0.0/16, 10.2.0.0/16, and 10.3.1.0/24/ The on-premises router is advertising 10.0.0.0/8. What is the most likely cause of this problem?
The less specific VPC subnet route is taking priority.
The more specific VPC subnet route is taking priority.
The on-premises router is not advertising a route for the database server.
A cloud firewall rule that blocks traffic to the on-premises database server was created during the change.
ユーザの投票
コメント(12)
Sorry, correct is B, the more specific takes priority
👍 17superpane2020/11/12The answer is B, Here is the routing table after the maintenance job 10.1.0.0/16 -> directly connected route 10.2.0.0/16 -> directly connected route 10.3..1.0/24 -> directly connected route 10.0.0.0/8 -> next hop is on-prem
As you can see, routing is go "longest matched" method, so instance see 10.2.1.25 as a local network device. Solution
- On-prem should announce more specific route rather than /8.
- The theory of design the network is wired, why do you add a overlapping subnet on your vpc.
👍 4pentium20002021/03/29Since router is advertising 10.0.0.0/8 that includes all the 3 subnets. Then I don't see how A,B,C is denying that. D is the answer
👍 3Jasonwcc2020/11/07
シャッフルモード