nerdexam
Exams300-730Questions#224
Cisco

300-730 · Question #224

300-730 Question #224: Real Exam Question with Answer & Explanation

The correct answer is D: DMVPN. DMVPN is the only listed technology that simultaneously uses internet connections as transport, creates private multipoint GRE tunnels between corporate sites, and encrypts those tunnels with IPsec.

Question

An engineer must design a VPN solution that meet these requirements:
  • internet connections to the cloud
  • creates a private tunnel for direct communication between corporate sites
  • encrypts the tunnels by using IPsec Which technology must be used?

Options

  • ASSL VPN
  • BGET VPN
  • CWebVPN
  • DDMVPN

Explanation

DMVPN is the only listed technology that simultaneously uses internet connections as transport, creates private multipoint GRE tunnels between corporate sites, and encrypts those tunnels with IPsec.

Common mistakes.

  • A. SSL VPN uses TLS rather than IPsec for encryption and is designed for remote-access client connectivity, not private site-to-site tunneling.
  • B. GET VPN requires a private MPLS network as its transport and relies on a Key Server; it does not operate over internet connections.
  • C. WebVPN is a clientless browser-based remote-access solution secured with SSL/TLS and is not designed for site-to-site private encrypted tunnels between corporate locations.

Concept tested. DMVPN as internet-based site-to-site IPsec VPN solution

Reference. https://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/WAN_and_MAN/DMVPN_2_Phase3/DMVPN_Phase_3_Aug11.html

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 300-730 Practice