300-420 · Question #201
300-420 Question #201: Real Exam Question with Answer & Explanation
The correct answer is B: DMVPN Phase 3 Hub and Spoke design. DMVPN Phase 3 Hub and Spoke is the best solution as it allows dynamic spoke-to-spoke tunnels and uses NHRP redirects to minimize routing table size on spokes, satisfying all requirements.
Question
Refer to the exhibit. A customer wants to adopt a dynamic site-to-site VPN solution to secure communication for VoIP, video, and FTP traffic between the remote branches and the headquarters. The customer also wants the branches to communicate directly, thereby reducing traffic at the headquarters location. The solution most consider that the branch routers are limited in available memory. Which VPN solution meets these requirements?
Options
- ADMVPN Phase 2 Hub and Spoke design
- BDMVPN Phase 3 Hub and Spoke design
- CDMVPN Phase 3 Hierarchical design
- DDMVPN Phase 1 Hub and Spoke design
Explanation
DMVPN Phase 3 Hub and Spoke is the best solution as it allows dynamic spoke-to-spoke tunnels and uses NHRP redirects to minimize routing table size on spokes, satisfying all requirements.
Common mistakes.
- A. DMVPN Phase 2 Hub and Spoke design allows direct spoke-to-spoke tunnels but requires spokes to learn all remote spoke routes, which can consume significant memory on branch routers and is not suitable for memory-limited devices.
- C. DMVPN Phase 3 Hierarchical design introduces more complexity and potentially more overhead for branch routers, which contradicts the requirement for limited memory devices.
- D. DMVPN Phase 1 Hub and Spoke design forces all spoke-to-spoke traffic to pass through the hub, which does not meet the requirement for direct branch communication and increased hub traffic.
Concept tested. DMVPN phases and features
Reference. https://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Branch/DMVPN/DMVPN_Phase3.html
Topics
Community Discussion
No community discussion yet for this question.