nerdexam
Exams300-320Questions#7
Cisco

300-320 · Question #7

300-320 Question #7: Real Exam Question with Answer & Explanation

The correct answer is B: IPsec. IPsec is the appropriate VPN technology for securely connecting two fixed sites over a WAN, providing encryption, authentication, and data integrity.

Question

A network manager wants to securely connect a new remote site to the existing headquarters site using a VPN technology that meets security requirements. Which VPN technology should be used?

Options

  • AGRE
  • BIPsec
  • Cremote-access VPN
  • DL2TP VPN

Explanation

IPsec is the appropriate VPN technology for securely connecting two fixed sites over a WAN, providing encryption, authentication, and data integrity.

Common mistakes.

  • A. GRE is a tunneling protocol that provides no encryption or authentication on its own, making it unsuitable when security requirements must be met.
  • C. Remote-access VPN is designed for individual mobile users connecting to a corporate network, not for permanent site-to-site connectivity.
  • D. L2TP provides tunneling at Layer 2 but has no built-in encryption; it typically relies on IPsec for security, making it a more complex and less direct choice than IPsec alone.

Concept tested. IPsec site-to-site VPN security

Reference. https://www.cisco.com/c/en/us/tech/security-vpn/ipsec-negotiation-ike-protocols/index.html

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 300-320 Practice