nerdexam
Exams300-415Questions#49
Cisco

300-415 · Question #49

300-415 Question #49: Real Exam Question with Answer & Explanation

The correct answer is A: 0. In Cisco SD-WAN, NAT for direct Internet access is always configured within the transport VPN, which is specifically designated for this purpose.

Architecture

Question

In which VPN is the NAT operation on an outgoing interface configured for direct Internet access?

Options

  • A0
  • B512
  • C10
  • D1

Explanation

In Cisco SD-WAN, NAT for direct Internet access is always configured within the transport VPN, which is specifically designated for this purpose.

Common mistakes.

  • B. VPN 512 is typically reserved for out-of-band management traffic and is not used for direct Internet access with NAT.
  • C. VPN 10 is a service VPN, used for user data traffic. Any traffic from VPN 10 destined for the Internet is routed to VPN 0 for NAT and egress.
  • D. VPN 1 is also a service VPN, similar to VPN 10, and routes its Internet-bound traffic through VPN 0 for NAT.

Concept tested. NAT for Internet access in VPN 0

Reference. https://www.cisco.com/c/en/us/td/docs/routers/sdwan/configuration/nat/nat-book.html#configuring-nat-with-a-local-internet-breakout-on-cisco-sd-wan-devices

Topics

#VPN 0#NAT Configuration#Internet Breakout#SD-WAN Architecture

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 300-415 Practice