ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-630 All Questions

View all questions & answers for the 300-630 exam
Go to Exam

Exam 300-630 topic 1 question 52 discussion

Actual exam question from Cisco's 300-630
Question #: 52
Topic #: 1
[All 300-630 Questions]

What is the advantage of implementing an active-active firewall cluster that is stretched across separate pods when anycast services are configured?

  • A. A different MAC/IP combination can be configured for the firewall in each pod.
  • B. The local pod anycast node is preferred by the local spines.
  • C. A cluster can be deployed in transparent mode across pods.
  • D. Local traffic in a pod is load-balanced between the clustered firewalls.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by apot at Oct. 7, 2021, 11:09 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
apot
Highly Voted 3 years, 4 months ago
Correct B
upvoted 5 times
...
vavram
Highly Voted 1 year, 10 months ago
B is corect. - . The local pod anycast node is preferred by the local spines. Reference Active-active firewall cluster stretched across separate pods Section on Cisco ACI Multi-Pod and Service Node Integration White Paper. https://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/application-centric-infrastructure/white-paper-c11-739571.html#Activeactivefirewallclusterstretchedacrossseparatepods The specific MAC/IP combination is only learned on the leaf nodes where the firewall nodes (anycast service) are directly attached; those leaf nodes then send a COOP update to the spines. From the spine nodes, the path to local attached anycast entry is always preferred. In case of a failure of all local service cluster nodes, the backup path to another pod is chosen.
upvoted 5 times
...
kamkol
Most Recent 10 months ago
Selected Answer: B
B local pod anycast node is preferred by the local spines. That is what we want, we dont want for local fabric to direct traffic to another pod without a reason, instead we should try to always use local device, especially in terms of security filtering devices like firewalls.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel