Which command can be used to sniffer the ESP traffic for the VPN DialUP_0?

Examine the output from the ‘diagnose vpn tunnel list’ command shown in the exhibit; then answer the question below.

Which command can be used to sniffer the ESP traffic for the VPN DialUP_0?
A . diagnose sniffer packet any ‘port 500’
B . diagnose sniffer packet any ‘esp’
C . diagnose sniffer packet any ‘host 10.0.10.10’
D . diagnose sniffer packet any ‘port 4500’

Answer: D

Explanation:

NAT-T is enabled. natt: mode=silentProtocol ESP is used. ESP is encapsulated in UDP port 4500 when NAT-T is enabled.

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments