Why?

View the exhibit, which contains a screenshot of some phase-1 settings, and then answer the question below.

The VPN is up, and DPD packets are being exchanged between both IPsec gateways; however, traffic cannot pass through the tunnel.

To diagnose, the administrator enters these CLI commands:

However, the IKE real time debug does not show any output.

Why?
A . The debug output shows phases 1 and 2 negotiations only. Once the tunnel is up, it does not show any more output.
B. The log-filter setting was set incorrectly. The VPN’s traffic does not match this filter.
C. The debug shows only error messages. If there is no output, then the tunnel is operating normally.
D. The debug output shows phase 1 negotiation only. After that, the administrator must enable the following real time debug: diagnose debug application ipsec -1.

Answer: B

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments