nerdexam
Exams300-415Questions#378
Cisco

300-415 · Question #378

300-415 Question #378: Real Exam Question with Answer & Explanation

The correct answer is B: TrustSec Inline Tagging. Cisco TrustSec Inline Tagging is the feature responsible for propagating Security Group Tags (SGTs) directly within the packet header as it traverses the network, enabling consistent policy enforcement.

Security and Quality of Service

Question

Which Cisco SD-WAN feature propagates packets with SGTs through the network?

Options

  • ASXP
  • BTrustSec Inline Tagging
  • CQoS
  • DSGT Enforcement

Explanation

Cisco TrustSec Inline Tagging is the feature responsible for propagating Security Group Tags (SGTs) directly within the packet header as it traverses the network, enabling consistent policy enforcement.

Common mistakes.

  • A. SXP (Security Group Tag Exchange Protocol) is used to exchange SGT information between network devices, not to propagate SGTs within data packets.
  • C. QoS (Quality of Service) is used to prioritize network traffic, not to propagate security group tags.
  • D. SGT Enforcement refers to the actions taken by devices based on SGTs, not the mechanism by which SGTs are propagated in the packets themselves.

Concept tested. TrustSec SGT propagation mechanism

Reference. https://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Security/TrustSec_1-0/TrustSec_SRND/TrustSec_Tech.html

Topics

#Cisco SD-WAN Security#TrustSec Inline Tagging#SGT propagation#Security Group Tag

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 300-415 Practice