Which command can be used to sniffer the ESP traffic for the VPN DialUP_0?

NSE7_EFW-6.4 V1 0 Comments

Examine the output from the ‘diagnose vpn tunnel list’ command shown in the exhibit; then answer the question below.

Which command can be used to sniffer the ESP traffic for the VPN DialUP_0?
A . diagnose sniffer packet any ‘port 500’
B . diagnose sniffer packet any ‘esp’
C . diagnose sniffer packet any ‘host 10.0.10.10’
D . diagnose sniffer packet any ‘port 4500’

Answer: D

Explanation:

NAT-T is enabled. natt: mode=silentProtocol ESP is used. ESP is encapsulated in UDP port 4500 when NAT-T is enabled.

Latest NSE7_EFW-6.4 Dumps Valid Version with 102 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download NSE7_EFW-6.4 PDF     NSE7_EFW-6.4 Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments