What are the two appropriate routing settings required to deploy software firewall integration with Amazon Web Service (AWS) GWLB? (Choose two.)
What are the two appropriate routing settings required to deploy software firewall integration with Amazon Web Service (AWS) GWLB? (Choose two.)
To deploy software firewall integration with AWS GWLB, two appropriate routing settings are essential. First, in a route table with IGW edge association, add a route destined to the ALB with the target set as GWLBE. This ensures that traffic from the internet gateway is directed to the Gateway Load Balancer Endpoint, which then forwards it to the ALB. Second, in a route table with GWLBE subnet association, add a route destined to 0.0.0.0/0 with the target set as IGW. This ensures that traffic within the subnet associated with the Gateway Load Balancer Endpoint can route to the internet.
Carrect answers are C/D https://docs.paloaltonetworks.com/vm-series/11-0/vm-series-deployment/set-up-the-vm-series-firewall-on-aws/vm-series-integration-with-gateway-load-balancer
Add route tables in the application VPC (in addition to the VPC local route) as follows: Route table with IGW edge association - Add route destined to ALB with target as GWLBE. Route table with ALB subnet association - Add route destined to 0.0.0.0/0 with target as GWLBE. Route table with GWLBE subnet association - Add route destined to 0.0.0.0/0 with target as IGW.