ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CV1-003 All Questions

View all questions & answers for the CV1-003 exam
Go to Exam

Exam CV1-003 topic 1 question 1 discussion

Actual exam question from CompTIA's CV1-003
Question #: 1
Topic #: 1
[All CV1-003 Questions]

SIMULATION -
A company has decided to scale its e-commerce application from its corporate datacenter to a commercial cloud provider to meet an anticipated increase in demand during an upcoming holiday.
The majority of the application load takes place on the application server under normal conditions. For this reason, the company decides to deploy additional application servers into a commercial cloud provider using the on-premises orchestration engine that installs and configures common software and network configurations.
The remote computing environment is connected to the on-premises datacenter via a site-to-site IPSec tunnel. The external DNS provider has been configured to use weighted round-robin routing to load balance connections from the Internet.
During testing, the company discovers that only 20% of connections completed successfully.

INSTRUCTIONS -
Review the network architecture and supporting documents and fulfill these requirements:
Part 1:
✑ Analyze the configuration of the following components: DNS, Firewall 1, Firewall 2, Router 1, Router 2, VPN and Orchestrator Server.
✑ Identify the problematic device(s).
Part 2:
✑ Identify the correct options to provide adequate configuration for hybrid cloud architecture.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.
Part 1:

Cloud Hybrid Network Diagram -








Part 2:
Only select a maximum of TWO options from the multiple choice question

Show Suggested Answer Hide Answer
Suggested Answer: See explanation below.
1. Change the Address Space on Router2
2. Update the PSK (Pre-shared key in Router2)
by _LoserLarry_ at Aug. 9, 2021, 9:31 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
MeisAdriano
1 year, 4 months ago
1) Update the PSK(Pre-shared key in Router2): if the keys are not equals, you can't connect. As you can see in the picture, IPSEC Tunnel use PSK "Cloud001" 2) Change the address space on Router2, althrough when you make a site-to-site IPSec tunnel, you creaet a new address space. But that's the last best answer
upvoted 1 times
...
_LoserLarry_
3 years, 10 months ago
In router 2 - I am trying to wrap my head around the issue for the address spacing. Is it wrong because that is the address space from Router 1? or is it wrong because the address space is supposed to point to the application server cluster (10.1.2.0/24) below it?
upvoted 1 times
Domdom120
3 years ago
Since the application cluster should be in the cloud (according to the question), yes, Router2 needs to be placed in the same address space as the cluster, otherwise traffic will be directed back to the on-prem appliances.
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel