Cisco
300-730 · Question #111
300-730 Question #111: Real Exam Question with Answer & Explanation
The correct answer is A: Configure a bookmark for the webserver.. Clientless SSL VPN on a Cisco ASA requires a bookmark so that remote users have a portal link to the internal webserver, since the ASA proxies all traffic on the user's behalf.
Question
A network engineer is setting up a clientless SSLVPN on a Cisco ASA. Remote users must be able to access an internal webserver via the URL example.com. Which two steps accomplish this task? (Choose two.)
Options
- AConfigure a bookmark for the webserver.
- BConfigure routing so that the user's computer can reach the webserver.
- CConfigure a DNS server that can resolve the webserver URL.
- DConfigure a browser plugin on the Cisco ASA.
- EConfigure routing so that the Cisco ASA can reach the webserver.
Explanation
Clientless SSL VPN on a Cisco ASA requires a bookmark so that remote users have a portal link to the internal webserver, since the ASA proxies all traffic on the user's behalf.
Common mistakes.
- B. Clientless SSL VPN proxies all connections through the ASA, so the user's computer never establishes a direct routed path to the internal webserver and a client-side route is not required.
- C. DNS resolution of the webserver URL must be available to the ASA itself so it can proxy the connection, not to the user's computer; this is an ASA-side infrastructure concern, not a distinct VPN configuration step.
- D. Clientless SSL VPN is specifically designed to operate without any browser plugin or additional software on the user's machine; plugins are a characteristic of thin-client or full-tunnel VPN modes.
- E. Basic IP reachability from the ASA to the internal webserver is a general network prerequisite that should already exist and is not a configuration step unique to enabling clientless SSL VPN access.
Concept tested. Clientless SSL VPN bookmark and portal configuration on ASA
Community Discussion
No community discussion yet for this question.