Cisco
300-415 · Question #250
300-415 Question #250: Real Exam Question with Answer & Explanation
The correct answer is D: Use public color on the TLOC.. To establish data plane tunnels, a vEdge router behind a NAT device requires its TLOC to be configured with a public color if the transport is via the internet, allowing it to advertise its public IP address for tunnel setup.
WAN Edge Router Deployment
Question
Refer to the exhibit. Which NAT type must the engineer configure for the vEdge router to bring up the data plane tunnels?
Options
- AUse private color on the TLOC.
- BEnable Full Cone NAT on the vEdge interface.
- CEnable Symmetric NAT on the vEdge interface.
- DUse public color on the TLOC.
Explanation
To establish data plane tunnels, a vEdge router behind a NAT device requires its TLOC to be configured with a public color if the transport is via the internet, allowing it to advertise its public IP address for tunnel setup.
Common mistakes.
- A. Using a 'private' color on the TLOC indicates that the transport is within a private network where NAT is typically not involved for TLOC reachability to other SD-WAN devices, and it would not help traverse internet NAT.
- B. While Full Cone NAT is desirable for SD-WAN tunnel establishment, an engineer doesn't 'enable Full Cone NAT on the vEdge interface'; this is a property of the upstream NAT device, not a configuration on the vEdge itself.
- C. Symmetric NAT is the most restrictive NAT type and often causes issues with SD-WAN tunnel establishment, requiring specific NAT traversal techniques, and is not something an engineer would enable on the vEdge to bring up tunnels.
Concept tested. Cisco SD-WAN NAT traversal and TLOC colors
Topics
#SD-WAN TLOC#NAT Traversal#vEdge Configuration#Data Plane Tunnels
Community Discussion
No community discussion yet for this question.