View all questions & answers for the NSE 7 - Public Cloud Security 7.6.4 Architect Exam Materials exam


Question 61 Discussion

In an SD-WAN TGW Connect topology, which three initial steps are mandatory when routing traffic from a spoke VPC to a security VPC through a Transit Gateway? (Choose three answers)

  • A. From the security VPC TGW subnet routing table, point 0.0.0.0/0 traffic to the FortiGate internal port.
  • B. From the security VPC FortiGate internal subnet routing table, point 0.0.0.0/0 traffic to the TGW.
  • C. From both spoke VPCs, and the security VPC, point 0.0.0.0/0 traffic to the Internet Gateway.
  • D. From the security VPC TGW subnet routing table, point 0.0.0.0/0 traffic to the TGW.
  • E. From the spoke VPC internal routing table, point 0.0.0.0/0 traffic to the TGW.
Correct Answer: A,B,E

Brave-Dump Clients Votes

ABE 100%

Comments



Mr_Fortitito 2025-09-07 06:57:16

Selected Answers: A, B, E


Page 108 specifically states: "When you attach a VPC to a transit gateway, you must add routes to the subnet route table to route traffic through the transit gateway. As per the example shown, all traffic (0.0.0.0/0) except 192.168.50.0/24 subnet traffic in the Spoke VPC A, will use the TGW attachment as the next hop."
Page 107 explains the Security VPC concept: "The TGW is configured to route all the communication flows between VPCs, or between VPCs and outside, always passing through the Security VPC."