300-730 Question #182: Real Exam Question with Answer & Explanation

The correct answer is A: GETVPN. Important caveat: The ip nhrp summary-map command is technically an NHRP (Next Hop Resolution Protocol) command, and NHRP is the protocol that underlies DMVPN (Dynamic Multipoint VPN) - not GETVPN. DMVPN uses NHRP for spoke registration and spoke-to-spoke tunnel discovery. GETVPN

Site-to-site VPNs on Routers and Firewalls

Question

A network administrator has been handed a VPN configuration with the ip nhrp summary-map command configured. Which type of VPN technology is being used?

Options

AGETVPN
BIPsec vpn

Explanation

Important caveat: The ip nhrp summary-map command is technically an NHRP (Next Hop Resolution Protocol) command, and NHRP is the protocol that underlies DMVPN (Dynamic Multipoint VPN) - not GETVPN. DMVPN uses NHRP for spoke registration and spoke-to-spoke tunnel discovery. GETVPN uses a Key Server / Group Member architecture with GDOI (Group Domain of Interpretation) and does not rely on NHRP at all. This question appears to contain an error in its answer key. Between the two options given (GETVPN and IPsec VPN), neither is the canonical correct association for ip nhrp summary-map. If DMVPN were listed as a choice, that would be the correct answer. When you encounter this command on real equipment or a real exam, associate it with DMVPN.

Topics

#NHRP#DMVPN#GETVPN#VPN identification

Community Discussion

No community discussion yet for this question.

Full 300-730 Practice