- Email support@dumps4free.com
Topic 1: Site-to-site Virtual Private Networks on Routers and Firewall
On a FlexVPN hub-and-spoke topology where spoke-to-spoke tunnels are not allowed,
which command is needed for the hub to be able to terminate FlexVPN tunnels?
A.
interface virtual-access
B.
ip nhrp redirect
C.
interface tunnel
D.
interface virtual-template
interface virtual-template
Which method dynamically installs the network routes for remote tunnel endpoints?
A.
policy-based routing
B.
CEF
C.
reverse route injection
D.
route filtering
reverse route injection
Drag and drop the correct commands from the night onto the blanks within the code on the
left to implement a design that allow for dynamic spoke-to-spoke communication. Not all
comments are used.
Refer to the exhibit.
A customer cannot establish an IKEv2 site-to-site VPN tunnel between two Cisco ASA devices. Based on the syslog message, which action brings up the VPN tunnel?
A.
Reduce the maximum SA limit on the local Cisco ASA.
B.
Increase the maximum in-negotiation SA limit on the local Cisco ASA.
C.
Remove the maximum SA limit on the remote Cisco ASA.
D.
Correct the crypto access list on both Cisco ASA devices.
Increase the maximum in-negotiation SA limit on the local Cisco ASA.
A second set of traffic selectors is negotiated between two peers using IKEv2. Which IKEv2
packet will contain details of the exchange?
A.
IKEv2 IKE_SA_INIT
B.
IKEv2 INFORMATIONAL
C.
IKEv2 CREATE_CHILD_SA
D.
IKEv2 IKE_AUTH
IKEv2 INFORMATIONAL
| Page 2 out of 20 Pages |
| Previous |