ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-415 All Questions

View all questions & answers for the 300-415 exam
Go to Exam

Exam 300-415 topic 1 question 262 discussion

Actual exam question from Cisco's 300-415
Question #: 262
Topic #: 1
[All 300-415 Questions]

An engineer modifies a data policy for DIA in VPN 67. The location has two Internet-bound circuits. Only the web browsing traffic must be admitted for DIA, without further discrimination about which transport to use.

Here is the existing data policy configuration:



Which policy configuration sequence meets the requirements?

  • A.
  • B.
  • C.
  • D.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by BrentL at May 17, 2023, 6:59 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
mikidvd51
7 months, 3 weeks ago
That "existing data-policy configuration" is incomplete and/or misleading. The one who formulated those ENSDWI questions should be fired.
upvoted 2 times
...
Aldebeer
1 year, 7 months ago
C is the right answer according to me.
upvoted 1 times
...
timtgh
1 year, 9 months ago
B and D are wrong because they say color instead of NAT. A is wrong because of the sequence number. We need the DIA sequence to occur after excluding the local traffic. C gets those things right, and must be the answer. But... shouldn't the sequence 10 code end with "action accept"?
upvoted 3 times
...
NetArch_Teck
1 year, 11 months ago
Answer is [C] The exhibit already shows the data-policy defined with a sequence number of 10 data-policy DIA VPN-list VPN-67 sequence 10 match destination-data-prefix-list INTERNAL-NETWORKS default-action drop The requirement is to have DIA for http, https traffic and to not specify (discriminate) against which transport to use. The next ordered sequence from the existing configuration would be 20 (10 being the previous) matching destinations ports 80, 443 from all internal networks with a default route (any/any) Nat use-vpn 0 Action is accepted with matching traffic sent to the transport VPN 0 DIA Option [C] fulfils the request.
upvoted 2 times
...
PepaZdepa33
1 year, 11 months ago
Selected Answer: C
I would say C fist sequence 10 to match internal networks then higher sequence so 20 to match destination port 80 and 443 and destination ip any finally action accept and use nat and vpn0 as exit to DIA
upvoted 4 times
...
hamidreza0010
2 years, 1 month ago
Selected Answer: A
A is the correct answer
upvoted 1 times
...
hamidreza0010
2 years, 1 month ago
Selected Answer: B
B is the correct answer
upvoted 1 times
hamidreza0010
2 years, 1 month ago
Sorry I meant A is the correct answer
upvoted 1 times
...
...
BrentL
2 years, 1 month ago
Shouldn't this be A? It wouldn't hit sequence 20 unless I'm missing something
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel