An engineer must configure a service graph for the policy-based redirect to redirect traffic to a transparent firewall. The policy must be vendor-agnostic to support any firewall appliance. Which two actions accomplish these goals? (Choose two.)
An engineer must configure a service graph for the policy-based redirect to redirect traffic to a transparent firewall. The policy must be vendor-agnostic to support any firewall appliance. Which two actions accomplish these goals? (Choose two.)
To configure a service graph for policy-based redirect to redirect traffic to a transparent firewall in a vendor-agnostic manner, certain actions must be taken. Setting the Service Type to Other allows flexibility to support various firewall appliances. Additionally, setting the Function Type to L2 ensures that the traffic is handled at layer 2, which is suitable for a transparent firewall configuration.
Another horrible question from Cisco. https://unofficialaciguide.com/2019/04/08/policy-routing-with-service-graphs/ promiscuous mode and managed mode are definitely untick.
https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/4-x/L4-L7-services/Cisco-APIC-Layer-4-to-Layer-7-Services-Deployment-Guide-401/Cisco-APIC-Layer-4-to-Layer-7-Services-Deployment-Guide-401_chapter_01001.html
When configuring a policy-based redirect (PBR) in Cisco ACI to redirect traffic to a transparent firewall, the configuration must be vendor-agnostic and support any firewall appliance. Transparent firewalls operate at Layer 2 (L2), meaning they do not act as Layer 3 gateways but instead forward traffic based on MAC addresses.