Which technology achieves this goal?

Posted by: Pdfprep Category: 300-320 Tags: , , Post Date: December 3, 2020

A company security policy states that their data center network must be segmented from the layer 3 perspective. The segmentation must separate various network security zones so that they do not exchange routing information and their traffic path must be completely segregated.

Which technology achieves this goal?
A . VPC
B . VXLAN
C . VRF
D . VDC

Answer: C

Explanation:

Virtual device context (VDC)

Cisco Nexus switches introduce support for virtual device contexts (VDCs). A VDC enables the switches to be virtualized at the device level. Each configured VDC presents itself as a unique device, further expanding tenant separation not only on data and control planes, but also on the management plane. A VDC runs as a separate logical entity within the switch, maintaining its own unique set of running software processes, having its own configuration, and being managed by a

separate administrator.

Virtual Routing and Forwarding (VRF)

The goal of every solid network design is to minimize the extent of the broadcast domain and exposure to spanning-tree loops, a method to translate the Layer 2 VLAN to a Layer 3 virtual network or virtual private network (VPN) is required. This Layer 3 VPN must be capable of supporting its own unique control plane, complete with its own addressing structure and routing tables for data forwarding completely isolated from any other Layer 3 VPN on that device and in the network. The technology enabling this type of functionality is known as the virtual routing and

forwarding (VRF) instance.

Virtualized Firewalls

Multicontext mode: Virtualized firewalls run on a single physical ASA appliance.

Virtual firewalls: Virtual firewalls are software-only firewalls running in a hypervisor (virtual

machine’s manager).

The multicontext mode was originally designed for multitenant deployments. It is also commonly

deployed in virtual routing and forwarding (VRF) environments, where VLANs map to VRFs, and

each VRF has its own virtual firewall.

Technology Description

VRF-Lite: Provides Layer 3 separation without the need for MPLS.

VDC: Provides data, control, and management plane separation.

VLAN: Provides Layer 2 separation.

VRF: Provides Layer 3 separation in conjunction with MPLS.

Author

Leave a Reply

Your email address will not be published.