Examice

Exam PCSFE All QuestionsBrowse all questions from this exam

Question 22

Why are VM-Series firewalls and hardware firewalls that are external to the Kubernetes cluster problematic for protecting containerized workloads?

They are located outside the cluster and have no visibility into application-level cluster traffic.

They do not scale independently of the Kubernetes cluster.

They are managed by another entity when located inside the cluster.

They function differently based on whether they are located inside or outside of the cluster.

Correct Answer: A

VM-Series firewalls and hardware firewalls that are external to the Kubernetes cluster are problematic for protecting containerized workloads because they are located outside the cluster and have no visibility into application-level cluster traffic. This lack of visibility prevents them from effectively inspecting and managing the traffic within the cluster, which is critical for security and performance in a containerized environment.

Discussion

DoobiedooOption: A

A is the correct answer. The VM-Series sits outside the cluster so it's unable to inspect intra-cluster containers. This is the main use case for deploying CN-Series firewalls.