Tag Archives: IPsec

A network engineer must simplify the IPsec configuration by enabling IPsec over GRE using IPsec profiles. Which two configuration changes accomplish this? (Choose two).

Refer to the exhibit. A network engineer must simplify the IPsec configuration by enabling IPsec over GRE using IPsec profiles. Which two configuration changes accomplish this? (Choose two). A. Create an IPsec profile, associate the transform-set ACL, and apply the profile to the tunnel interface. B. Apply the crypto map to the tunnel interface and change the tunnel… Read More »

After configuring an IPsec VPN, an engineer enters the show command to verify the ISAKMP SA status. What does the status show?

Refer to the exhibit. After configuring an IPsec VPN, an engineer enters the show command to verify the ISAKMP SA status. What does the status show? A. VPN peers agreed on parameters for the ISAKMP SA. B. Peers have exchanged keys, but ISAKMP SA remains unauthenticated. C. ISAKMP SA is authenticated and can be used for Quick Mode.… Read More »

An engineer must design a VPN solution for a company that has multiple branches connecting to a main office. What are two advantages of using DMVPN instead of IPsec tunnels to accomplish this task? (Choose two.)

A. support for AES 256-bit encryption B. greater scalability C. support for anycast gateway D. lower traffic overhead E. dynamic spoke-to-spoke tunnels Answer: Option B, E. Explanation:  No answer description available for this question. Show AnswerDiscussion The post An engineer must design a VPN solution for a company that has multiple branches connecting to a main office. What… Read More »

When IPsec VPNs are designed, what is a unique requirement if support for IP Multicast is required?

A. encapsulation of traffic with GRE or VTI B. IPsec forwarding using transport mode C. additional bandwidth for headend D. IPsec forwarding using tunnel mode Answer: Option A. Explanation:  No answer description available for this question. Show AnswerDiscussion The post When IPsec VPNs are designed, what is a unique requirement if support for IP Multicast is required? appeared… Read More »

An engineer must design a VPN solution for a company that has multiple branches connecting to a main office. What are two advantages of using DMVPN instead of IPsec tunnels to accomplish this task? (Choose two.)

A. support for AES 256-bit encryption B. greater scalability C. support for anycast gateway D. lower traffic overhead E. dynamic spoke-to-spoke tunnels Answer: Option B, E. Explanation:  No answer description available for this question. Show AnswerDiscussion The post An engineer must design a VPN solution for a company that has multiple branches connecting to a main office. What… Read More »

A global organization with several branches hired a network architect to design an overlay VPN solution. The branches communicate with each other frequently. The customer expects to add more branches in the future. To meet the customer’s security requirements, the architect plans to provide traffic protection using dynamic IPsec tunnels. Which solution should the architect choose?

A. DMVPN B. EasyVPN C. L2TP D. GETVPN Answer: Option A. Explanation:  No answer description available for this question. Show AnswerDiscussion The post A global organization with several branches hired a network architect to design an overlay VPN solution. The branches communicate with each other frequently.<br> The customer expects to add more branches in the future. To meet… Read More »