Cisco (300-730-SVPN) Exam Questions And Answers page 3
What are the two functions of ECDH and ECDSA?
Multiple Choice
What are two functions of ECDH and ECDSA? (Choose two.)
revocation
digital signature
key exchange
encryption
Implement and Troubleshoot Secure Communications
Secure Communications Architectures and Solutions
Refer to the exhibit. Which type of VPN implementation is displayed?
IKEv1 cluster
IKEv2 backup gateway
IKEv2 load balancer
IKEv2 reconnect
Secure Solutions with Virtual Private Networks
Which command is used to troubleshoot an IPv6 FlexVPN spoke-to-hub connectivity failure?
show crypto ikev2 sa
show crypto isakmp sa
show crypto gkm
show crypto identity
Implement and Troubleshoot Secure Communications
Secure Communications Architectures and Solutions
Which requirement is needed to use local authentication for Cisco AnyConnect Secure Mobility Clients that connect to a FlexVPN server?
use of certificates instead of username and password
EAP-AnyConnect
EAP query-identity
AnyConnect profile
Architecture and Design
Implement and Troubleshoot Secure Communications
A company's remote locations connect to the data centers via MPLS. A new request requires that unicast and multicast traffic that exits in the remote locations be encrypted. Which non-tunneled technology should be used to satisfy this requirement?
SSL
FlexVPN
DMVPN
GETVPN
Implement and Troubleshoot Secure Communications
Secure Communications Architectures and Solutions
Which IKE identity does an IOS/IOS-XE headend expect to receive if an IPsec Cisco AnyConnect client uses default settings?
*$SecureMobilityClient$*
*$AnyConnectClient$*
*$RemoteAccessVpnClient$*
*$DfltlkeldentityS*
Implement and Troubleshoot Secure Communications
Infrastructure Security
What is a requirement for smart tunnels to function properly?
Java or ActiveX must be enabled on the client machine.
Applications must be UDP.
Stateful failover must not be configured.
The user on the client machine must have admin access.
Implement and Troubleshoot Secure Communications
Secure Communications Architectures and Solutions
Refer to the exhibit. An engineer is troubleshooting a new GRE over IPsec tunnel. The tunnel is established, but the engineer cannot ping from spoke 1 to spoke 2. Which type of traffic is being blocked?
ESP packets from spoke2 to spoke1
ISAKMP packets from spoke2 to spoke1
ESP packets from spoke1 to spoke2
ISAKMP packets from spoke1 to spoke2
Implement and Troubleshoot Secure Communications
Secure Communications Architectures and Solutions
Drag and drop the correct commands from the right onto the blanks within the code on the left to implement a design that allow for dynamic spoke-to-spoke communication. Not all commands are used.
Architecture and Design
Implement and Troubleshoot Secure Communications
In a FlexVPN deployment, the spokes successfully connect to the hub, but spoke-to-spoke tunnels do not form. Which troubleshooting step solves the issue?
Verify the spoke configuration to check if the NHRP redirect is enabled.
Verify that the spoke receives redirect messages and sends resolution requests.
Verify the hub configuration to check if the NHRP shortcut is enabled.
Verify that the tunnel interface is contained within a VRF.
Architecture and Design
Implement and Troubleshoot Secure Communications
Comments