Describe Consul architecture (10%)

Deploy a single datacenter (10%)

Service discovery and service registration (10%)

Service mesh (10%)

Secure agent communication (10%)

Access Control Lists (ACLs) and service security (10%)

Secure and connect service mesh applications at scale (10%)

Monitor Consul (10%)

Operate and maintain Consul (10%)

Option B: Consul Server Agent

Option C: Connect Sidecar Proxy

Option D: Consul Mesh Gateway

Option E: Consul Ingress Gateway

Option F: Consul Terminating Gateway

Correct Answer: Option B

Explanation: Option B is correct because Consul Server Agents are the core components that maintain the cluster state, participate in the Raft consensus algorithm, and handle RPC queries, Option A is incorrect because client agents route requests to servers but do not maintain cluster state, Option C is incorrect as the sidecar proxy manages service mesh traffic rather than cluster state, Option D, Option E, and Option F are incorrect because gateways manage specialized traffic routing, not the core internal cluster state,

Question 2: How do applications primarily query the Consul service catalog to discover available services within a datacenter

Option B: By querying a central relational database managed by Consul

Option C: Via the Consul HTTP API or the Consul DNS interface

Option D: By broadcasting UDP multicast requests across the network

Option E: By polling the Consul UI dashboard metrics

Option F: By parsing the local Consul agent log files

Correct Answer: Option C

Explanation: Option C is correct because Consul natively supports service discovery through its HTTP API and a built-in DNS server, allowing applications to easily find services, Option A is incorrect because Consul is a dynamic service registry, not a static file, Option B is incorrect as Consul uses its own distributed key-value store, not a traditional relational database, Option D is incorrect because Consul uses gossip protocol for internal agent communication, not for application service discovery queries, Option E and Option F are incorrect because logs and dashboards are strictly for observability,

Question 3: In a Consul service mesh, what is the primary mechanism utilized to secure service-to-service communication

Option B: Basic Access Authentication via HTTP headers

Option C: Symmetric key encryption using a static shared secret

Option D: Mutual TLS (mTLS) using certificates distributed by Consul

Option E: SSH tunneling between client and server agents

Option F: MAC address filtering at the network switch level

Correct Answer: Option D

Explanation: Option D is correct because Consul service mesh relies on mutual TLS (mTLS) to automatically encrypt and authenticate service-to-service traffic using built-in certificate management, Option A is incorrect because IPsec is a network-layer VPN technology, whereas Consul Connect operates at the application and transport layers, Option B is incorrect as basic authentication does not encrypt the underlying traffic payload, Option C is incorrect because Consul uses asymmetric cryptography via TLS certificates rather than static symmetric keys, Option E and Option F are incorrect as they represent legacy infrastructure-level controls that do not integrate dynamically with Consul services,

You can retake the exams as many times as you want

This is a huge original question bank

You get support from instructors if you have questions

Each question has a detailed explanation

Mobile-compatible with the Udemy app