ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-101 All Questions

View all questions & answers for the 300-101 exam
Go to Exam

Exam 300-101 topic 1 question 422 discussion

Actual exam question from Cisco's 300-101
Question #: 422
Topic #: 1
[All 300-101 Questions]

Router R1, a branch router, connects to the Internet using DSL. Some traffic flows through a GRE and IPsec tunnel, over the DSL connection, and into the core of an Enterprise network. The branch also allows local hosts to communicate directly with public sites in the Internet over this same DSL connection. Which of the following answers defines how the branch NAT config avoids performing NAT for the Enterprise directed traffic but does perform NAT for the Internet-directed traffic?

  • A. By not enabling NAT on the IPsec tunnel interface
  • B. By not enabling NAT on the GRE tunnel interface
  • C. By configuring the NAT-referenced ACL to not permit the Enterprise traffic
  • D. By asking the ISP to perform NAT in the cloud
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
The NAT configuration acts only on packets permitted by a referenced ACL. As a result, the ACL can permit packets destined for the Internet, performing NAT on those packets. The ACL also denies packets going to the Enterprise, meaning that the router does not apply NAT to those packets.
by Bastex at Aug. 29, 2019, 6:25 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Penn
5 years, 7 months ago
tunnel interface usually use private IP.
upvoted 1 times
...
Bastex
5 years, 10 months ago
B. Just don't use ip nat outside on Tunnel0 interface.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel