nerdexam
Exams300-425Questions#257
Cisco

300-425 · Question #257

300-425 Question #257: Real Exam Question with Answer & Explanation

The correct answer is C: Use a mobility tunnel that supports data channel encryption between the two WLCs.. To provide seamless roaming (same IP and security context) between legacy AireOS and new IOS XE controllers, you must establish a Mobility Tunnel between them. Enabling data‐channel encryption on that tunnel ensures that both control and client traffic remain secure and the secur

Question

A customer is transitioning the wireless network from a legacy Cisco AirOS-based WLC to a new Cisco IOS XE-based WLC that includes next generation APs. During the transition, the two systems must coexist while the APs are being migrated. The customer requires that users connected to either system maintain their IP address and security posture when roaming between APs on the same controller and different controllers. Which design approach must the engineer take for the legacy and next-generation WLCs?

Options

  • AUse high availability in an Active/Active state cluster pair between the two WLCs.
  • BUse a mobility tunnel that supports control channel encryption between the two WLCs.
  • CUse a mobility tunnel that supports data channel encryption between the two WLCs.
  • DUse high availability in an Active/Active N+1 state cluster pair between the two WLCs.

Explanation

To provide seamless roaming (same IP and security context) between legacy AireOS and new IOS XE controllers, you must establish a Mobility Tunnel between them. Enabling data‐channel encryption on that tunnel ensures that both control and client traffic remain secure and the security posture is preserved as clients roam between the two controller platforms.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 300-425 Practice