300-320 · Question #108
300-320 Question #108: Real Exam Question with Answer & Explanation
The correct answer is C: using two firewalls in active/active mode. Using two firewalls in active/active mode is the recommended topology because it provides both high availability (redundancy) and load distribution across both devices simultaneously. If one firewall fails, the other continues to pass traffic. Choice A is flawed because 'switched
Question
Options
- Ausing two firewalls with stateful failover switched mode
- Busing one firewall with NAT enabled in transparent mode
- Cusing two firewalls in active/active mode
- Dusing one firewall with stateful failover enabled in routed mode
Explanation
Using two firewalls in active/active mode is the recommended topology because it provides both high availability (redundancy) and load distribution across both devices simultaneously. If one firewall fails, the other continues to pass traffic. Choice A is flawed because 'switched mode' is not a standard failover topology. Choice B is invalid because transparent mode operates at Layer 2 and does not perform NAT. Choice D uses only a single firewall, which is a single point of failure - stateful failover alone does not eliminate this risk when there is only one device in the topology.
Community Discussion
No community discussion yet for this question.