Cisco
300-415 · Question #63
300-415 Question #63: Real Exam Question with Answer & Explanation
The correct answer is D: It carries control traffic over secure DTLS or TLS connections between vSmart controllers and vEdge routers, and between vSmart and vBond.. VPN 0 in the Cisco SD-WAN configuration template is specifically designed to carry control traffic, establishing secure connections for the overlay network's control plane.
Architecture
Question
What is the purpose of "vpn 0" in the configuration template when onboarding a WAN Edge node?
Options
- AIt carries control traffic over secure IPsec connections between vSmart controllers and vEdge routers, and between vSmart and vBond.
- BIt carries control out-of-band network management traffic among the Viptela devices in the overlay network.
- CIt carries control traffic over secure IPsec connections between vSmart controllers and vEdge routers, and between vSmart and vManager.
- DIt carries control traffic over secure DTLS or TLS connections between vSmart controllers and vEdge routers, and between vSmart and vBond.
Explanation
VPN 0 in the Cisco SD-WAN configuration template is specifically designed to carry control traffic, establishing secure connections for the overlay network's control plane.
Common mistakes.
- A. VPN 0 utilizes DTLS or TLS for its control plane connections, not IPsec.
- B. VPN 0 carries control plane traffic for the overlay network, not out-of-band network management traffic, which is typically handled by VPN 512 or dedicated management interfaces.
- C. VPN 0 uses DTLS or TLS for control plane connections and does not connect vSmart to vManager directly for control traffic, as vManager is the network management system.
Concept tested. Cisco SD-WAN VPN 0 control plane
Topics
#VPN 0#Control Plane#Cisco SD-WAN Architecture#DTLS/TLS
Community Discussion
No community discussion yet for this question.