Cisco 300-440 - Designing and Implementing Cloud Connectivity (ENCC) Exam
Page: 1 / 17
Total 84 questions
Question #1 (Topic: Topic 1, Architecture Models
)
Which method is used to create authorization boundary diagrams (ABDs)?
A. identify only interconnected systems that are FedRAMP-authorized
B. show all networks in CIDR notation only
C. identify all tools as either external or internal to the boundary
D. show only minor or small upgrade level software components
Answer: C
Question #2 (Topic: Topic 1, Architecture Models
)
A company has multiple branch offices across different geographic locations and a centralized data center. The company plans to migrate its critical business applications to the public cloud infrastructure that is hosted in Microsoft Azure. The company requires high availability, redundancy, and low latency for its business applications. Which connectivity model meets these requirements?
A. ExpressRoute with private peering using SDCI
B. hybrid connectivity with SD-WAN
C. AWS Direct Connect with dedicated connections
D. site-to-site VPN with Azure VPN gateway
Answer: A
Question #3 (Topic: Topic 1, Architecture Models
)
A company with multiple branch offices wants a suitable connectivity model to meet these network architecture requirements:
high availability
quality of service (QoS)
multihoming
specific routing needs
Which connectivity model meets these requirements?
high availability
quality of service (QoS)
multihoming
specific routing needs
Which connectivity model meets these requirements?
A. hub-and-spoke topology using MPLS with static routing and dedicated bandwidth for QoS
B. star topology with internet-based VPN connections and BGP for routing
C. hybrid topology that combines MPLS and SD-WAN
D. fully meshed topology with SD-WAN technology using dynamic routing and prioritized traffic for QoS
Answer: C
Question #4 (Topic: Topic 1, Architecture Models
)
Which approach does a centralized internet gateway use to provide connectivity to SaaS applications?
A. A cloud-based proxy server routes traffic from the on-premises infrastructure to the SaaS provider data center.
B. Internet traffic from the on-premises infrastructure is routed through a centralized gateway that provides access controls for SaaS applications.
C. VPN connections are used to provide secure access to SaaS applications from the on-premises infrastructure.
D. A dedicated, private connection is established between the on-premises infrastructure and the SaaS provider data center using colocation services.
Answer: B
Question #5 (Topic: Topic 1, Architecture Models
)
Which architecture model establishes internet-based connectivity between on-premises networks and AWS cloud resources?
A. That establishes an IPsec VPN tunnel with Internet Key Exchange (IKE) for secure key negotiation and encrypted data transmission.
B. That relies on AWS Elastic Load Balancing (ELB) for traffic distribution and uses SSL/TLS encryption for secure data transmission.
C. That employs AWS Direct Connect for a dedicated network connection and uses private IP addresses for secure communication.
D. That uses Amazon CloudFront for caching and distributing content globally and uses HTTPS for secure data transfer.
Answer: A
