nerdexam
Exams300-730Questions#214
Cisco

300-730 · Question #214

300-730 Question #214: Real Exam Question with Answer & Explanation

The correct answer is D: split-tunnel-network-list value <aclname>. Split tunneling with AnyConnect is configured in the group policy using split-tunnel-network-list to define which networks are routed through the VPN tunnel.

Remote Access VPN

Question

Which command must be run to configure split tunneling when using the AnyConnect client and FlexVPs backend?

Options

  • Asvc split include <network> <mask>
  • Broute set access-list <aclname>
  • Cvpn-filter value <aclname>
  • Dsplit-tunnel-network-list value <aclname>

Explanation

Split tunneling with AnyConnect is configured in the group policy using split-tunnel-network-list to define which networks are routed through the VPN tunnel.

Common mistakes.

  • A. The svc split include command is legacy syntax from older ASA WebVPN configurations and is not the current supported method for configuring AnyConnect split tunneling.
  • B. route set access-list is not a valid Cisco IOS or ASA command for defining AnyConnect split tunneling behavior.
  • C. vpn-filter value applies an ACL to filter all traffic flowing through an established VPN tunnel but does not configure which networks are routed through the tunnel versus bypassed.

Concept tested. AnyConnect split tunneling network list group policy

Reference. https://www.cisco.com/c/en/us/support/docs/security/anyconnect-secure-mobility-client/119006-configure-anyconnect-00.html

Topics

#AnyConnect#FlexVPN#split tunneling#split-tunnel-network-list

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 300-730 Practice