Which of this is true of IP addressing with regard to VPN termination?
A . IGP routing protocols will update their routing tables over an IPsec VPN
B . Termination devices need routable addresses inside the VPN
C . Addressing design need to allow for summarization
D . Designs should not include overlapping address spaces between sites, since NAT is not supported
Answer: C
Explanation:
Best design practices say the VPN design should allow for summarization. With regards to D – sometimes you cannot avoid overlapping addresses as this is what is configured at client’s end, and the only option is to hide the overlapping subnet behind NAT – based on experience (The author of this remark has 50x VPN tunnels and majority of them is using NAT, even if the subnet doesn’t overlap, we want to hide our real IPs behind something else – extra security)
Latest 300-320 Dumps Valid Version with 725 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund