ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-730 All Questions

View all questions & answers for the 300-730 exam
Go to Exam

Exam 300-730 topic 1 question 152 discussion

Actual exam question from Cisco's 300-730
Question #: 152
Topic #: 1
[All 300-730 Questions]

A network administrator deployed IKEv2 Cisco AnyConnect on a Cisco ASA. The current configuration tunnels all traffic through the VPN. Users report poor performance with cloud-based applications, but no issues have been reported about connections to on-premises servers. Packet analysis on Cisco Webex traffic shows very few duplicate ACKs, high RTT, and no IP fragments. Which action improves Webex performance for VPN users?

  • A. Configure QoS on the outside interface of the ASA.
  • B. Configure Cisco AnyConnect to use DTLS.
  • C. Configure a dynamic split tunnel exclusion.
  • D. Reduce the Cisco AnyConnect tunnel MTU.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by gondohwe at Nov. 13, 2023, 6:03 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
DGriff
6 months ago
Selected Answer: B
RTT is a clue that latency is not a problem. Split tunnel does not improve traffic in cases where ISP issue may provide lesser quality performance. So reconfiguration is not warranted. B is none to deal with time-sensitive traffic, which the cloud solution are mostly.
upvoted 1 times
GRozar
5 months, 3 weeks ago
It says High RTT, which indicates that latency is THE problem. Dynamic Split Tunnel Exclusion is the solution here. I go with C.
upvoted 1 times
...
...
emaurri
9 months, 2 weeks ago
i go with C. https://www.cisco.com/c/en/us/td/docs/security/vpn_client/anyconnect/anyconnect47/administration/guide/b_AnyConnect_Administrator_Guide_4-7/configure-vpn.html#concept_fly_15q_tz:~:text=domain%20name%20matching.-,Dynamic,-Split%20Exclude%20Tunneling
upvoted 2 times
...
Precission21
1 year, 4 months ago
Selected Answer: B
C is incorrect as no one told us we can exclude cloud traffic from traversing ASA (maybe they do some filtering etc.?) B is logical as cisco itself mention that DTLS improves latency and also voice quality which is webex
upvoted 1 times
PartOfIT
1 month, 3 weeks ago
DTLS is ideally to use for avoids the additional overhead and retransmissions associated with TCP-based SSL/TLS. DTLS is optimized for conditions where packet loss can occur, making it ideal for large file transfers where maintaining high overall throughput is essential.DTLS (Datagram TLS) can sometimes improve performance by using UDP’s connectionless nature to avoid some overheads associated with TCP, but in this scenario the primary issue is the extra routing latency for cloud-bound traffic—not a protocol overhead.
upvoted 2 times
...
...
gondohwe
1 year, 9 months ago
C...dynamic split tunnel uses DNS info to determine what traffic to be tunneled works to improve webex traffic
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel