An engineer must force a new IKEv2 security association to be built when using FlexVPN. Which two commands must the engineer apply to meet the requirement? (Choose two.)
This is a tricky one but if the cmd are as displayed, first none of them exist (both are clear CRYPTO ....)and 2nd-> https://www.cisco.com/c/en/us/support/docs/security/flexvpn/115782-flexvpn-site-to-site-00.html ->"Use the shut and no shut commands on the tunnel interface in order to force a new IKEv2 SA to be built."
A) This command does not exist
B) This is for Ipsec Phase 2 SA not IKEv2 SA
C) This is for IKEv1 not for IKEv2
Shutting the tunnel interface and no shutting the tunnel interface forces new IKEv2 SA's to be built.
See this reference:
https://www.cisco.com/c/en/us/support/docs/security/flexvpn/115782-flexvpn-site-to-site-00.html
upvoted 1 times
...
This section is not available anymore. Please use the main Exam Page.300-730 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
fukumoto0925
1 month ago4b4ddf8
2 months ago