Cisco (300-730-SVPN) Exam Questions And Answers page 12
Which two NHRP functions are specific to DMVPN Phase 3 implementation? (Choose two.)
redirect
resolution reply
registration request
resolution request
Implement and Troubleshoot Secure Communications
Secure Communications Architectures and Solutions
Refer to the exhibit. The VPN tunnel between the FlexVPN spoke and FlexVPN hub 192.168.0.12 is failing. What should be done to correct this issue?
Add the address 192.168.0.12 255.255.255.255 command to the keyring configuration.
Add the match fvrf any command to the IKEv2 policy.
Add the aaa authorization group psk list Flex_AAA Flex_Auth command to the IKEv2 profile configuration.
Add the tunnel mode gre ip command to the tunnel configuration.
Architecture and Design
Implement and Troubleshoot Secure Communications
Refer to the exhibit. A user is connecting from behind a PC with a private IP Address. Their ISP provider is blocking TCP port 443. Which AnyConnect XML configuration will allow the user to establish a connection with the ASA?
Implement and Troubleshoot Secure Communications
Infrastructure Security
An engineer has integrated a new DMVPN to link remote offices across the internet using Cisco IOS routers. When connecting to remote sites, pings and voice data appear to flow properly, and all tunnel stats show that they are up. However, when trying to connect to a remote server using RDP, the connection fails. Which action resolves this issue?
Adjust the MTU size within the routers.
Add RDP port to the extended ACL.
Replace certificate on the RDP server.
Change DMVPN timeout values.
Architecture and Design
Implement and Troubleshoot Secure Communications
Refer to the exhibit. DMVPN spoke-to-spoke traffic works, but it passes through the hub, and never sends direct spoke-to-spoke traffic. Based on the tunnel interface configuration shown, what must be configured on the hub to solve the issue?
Enable NHRP redirect.
Enable split horizon.
Enable IP redirects.
Enable NHRP shortcut.
Implement and Troubleshoot Secure Communications
Secure Communications Architectures and Solutions
Which command identifies a Cisco AnyConnect profile that was uploaded to the flash of an IOS router?
svc import profile SSL_profile flash:simos-profile.xml
anyconnect profile SSL_profile flash:simos-profile.xml
crypto vpn anyconnect profile SSL_profile flash:simos-profile.xml
webvpn import profile SSL_profile flash:simos-profile.xml
Implement and Troubleshoot Secure Communications
Infrastructure Security
Which Cisco AnyConnect component ensures that devices in a specific internal subnet are only accessible using port 443?
routing
WebACL
split tunnel
VPN filter
Implement and Troubleshoot Secure Communications
Infrastructure Security
Comments