300-415 Question #108: Real Exam Question with Answer & Explanation

The correct answer is A: local data policy. To configure an Access Control List (ACL) for service-side traffic on a specific WAN Edge device, a local data policy is required as it allows device-specific application and can reference local identifiers like circuit IDs.

Policies

Question

An administrator must configure an ACL for traffic coming in from the service-side VPN on a specific WAN Edge device with circuit ID 392318933. Which policy must be used to configure this ACL?

Options

Alocal data policy
Bcentral data policy
CApp-aware policy
Dcentral control policy

Explanation

To configure an Access Control List (ACL) for service-side traffic on a specific WAN Edge device, a local data policy is required as it allows device-specific application and can reference local identifiers like circuit IDs.

Common mistakes.

B. A central data policy is configured on vManage and applies across the entire overlay or to groups of devices, not typically for device-specific ACLs referencing local circuit IDs.
C. An App-aware policy is a type of centralized data policy used for application-aware routing and performance, not for configuring local ACLs on a specific WAN Edge device.
D. A central control policy primarily influences routing and OMP advertisements, not direct data plane ACLs for traffic flowing through a WAN Edge device.

Concept tested. SD-WAN local data policy application

Reference. https://www.cisco.com/c/en/us/td/docs/routers/sdwan/configuration/sdwan-xe-gs-book/m-sdwan-policies.html#Cisco_Concept.dita_a0c9a29e-2977-4b68-b30f-48d655f4fc66

Topics

#SD-WAN Policies#Local Data Policy#ACL#WAN Edge Configuration

Community Discussion

No community discussion yet for this question.

Full 300-415 Practice