When you have completed the simulation, please select the Done button to submit. Once the simulation is submitted, please select the Next button to continue.

– by 7

SIMULATION
A company has decided to scale its e-commerce application from its corporate datacenter to a commercial cloud provider to meet an anticipated increase in demand during an upcoming holiday. The majority of the application load takes place on the application server under normal conditions. For this reason, the company decides to deploy additional application servers into a commercial cloud provider using the on-premises orchestration engine that installs and configures common software and network configurations. The remote computing environment is connected to the on-premises datacenter via a site-to-site IPSec tunnel. The external DNS provider has been configured to use weighted round-robin routing to load balance connections from the Internet.
During testing, the company discovers that only 20% of connections completed successfully.
Review the network architecture and supporting documents and fulfill these requirements:
Part1:
1. Analyze the configuration of the following components: DNS, Firewall1, Firewall2, Router1, Rouler2, VPN and Orchestrator Server.
2. Identify the problematic device(s).
Instructions:
If at any time you would like to bring back the initial state of the simulation, please select the Reset button. When you have completed the simulation, please select the Done button to submit. Once the simulation is submitted, please select the Next button to continue.
Simulation










A. Answer: See the solution below.

comptia-exams

7 thoughts on “When you have completed the simulation, please select the Done button to submit. Once the simulation is submitted, please select the Next button to continue.

  1. Correct answers are B and E. Router 2 is all kind of messed up. Not only does it have an incorrect PSK (should be the same on both routers), it also has Router 1’s address space configured as its own encryption domain.

    1
    Reply

  3. if you check out the preshared key of the VPN you will see that router 2 is not configured with the correct key

    1
    Reply

  4. Instruction: Only select a maximum of TWO options from the multiple choice question.

    A. Deploy a Replica of the Database Server in the Cloud Provider

    B. Update the PSK (Pre-shared key in Router2)

    C. Update the A record on the DNS from 2.2.2.2 to 1.1.1.1

    D. Promote deny All to allow All in Firewall1 and Firewall2

    E. Change the Address Space on Router2

    F. Change internal IP Address of Router1

    G. Reverse the Weight property in the two CNAME records on the DNS

    H. Add the Application Server at on-premises to the Load Balancer

    Answer: A and H

    1
    2
    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *


The reCAPTCHA verification period has expired. Please reload the page.