Exam 300-425 topic 1 question 90 discussion

The key is UDP ports. IP protocol 97 is not UDP.

The question is asking for the UDP ports, that would remove the IP protocol 97 from the options. "If encrypted mobility tunnel is in enabled state, the data traffic is encrypted and the controller uses UDP port 16667, instead of EoIP, to send the data traffic." https://www.cisco.com/c/en/us/support/docs/wireless/4400-series-wireless-lan-controllers/107188-mobility-groups-faq.html#anc13

Legacy controller platforms that are based on AireOS software prior to release 8.5 transport mobility messages over Ethernet-over-IP (EoIP) tunnels (IP protocol 97) and UDP port 16666. AireOS platforms running release 8.5 or later support encrypted CAPWAP.

D is correct

UDP 16666 = data plane UDP 16667 = control plane

16667 for controlling, not for data.

Legacy details: Control plane was UDP16666 and data plane was IP97 The question is asking for UDP ports. This eliminates answer A because 97 is IP and not UDP. Correct answer is D.

16666 and 16667 and 97 are required for mobility (16666, 16667 are ports, EoIP is PROTOCOL 97)

From Cisco ENWLSD course, it is A.

Because the questions asks for UDP, we should pick the wrong answer? 16667 is never mentioned in the Official Cisco Cert Guide. This is why the exam is so hard. Pure trickery on Cisco's end! I'll stick with "A".

A is correct. 16667 is never mentioned in the entire book! AireOS software prior to release 8.5 transport mobility messages over Ethernet-over-IP (EoIP) tunnels (IP protocol 97) and UDP port 16666

D is correct, as stated below EoIP is not UDP and the question specifically ask for UDP.

from study guide: Legacy controller platforms that are based on AireOS software prior to release 8.5 transport mobility messages over Ethernet-over-IP (EoIP) tunnels (IP protocol 97) and UDP port 16666. AireOS platforms running release 8.5 or later support encrypted CAPWAP. AND https://www.cisco.com/c/en/us/support/docs/wireless/4400-series-wireless-lan-controllers/107188-mobility-groups-faq.html

If encrypted mobility tunnel is in enabled state, the data traffic is encrypted and the controller uses UDP port 16667, instead of EoIP, to send the data traffic. https://www.cisco.com/c/en/us/support/docs/wireless/4400-series-wireless-lan-controllers/107188-mobility-groups-faq.html

Seems A is correct https://www.cisco.com/c/en/us/support/docs/wireless/4400-series-wireless-lan-controllers/107188-mobility-groups-faq.html UDP 16666 for tunnel control traffic IP protocol 97 for user data traffic

Cisco WLCs exchange mobility traffic with each other using various tunneling methods, depending on the controller platform. The most recent platforms, such as the Catalyst 9800, transport mobility control messages over encrypted CAPWAP tunnels. Client data traffic is also transported over CAPWAP tunnels, but encryption is optional. Legacy controller platforms that are based on AireOS software prior to release 8.5 transport mobility messages over Ethernet-over-IP (EoIP) tunnels (IP protocol 97) and UDP port 16666. AireOS platforms running release 8.5 or later support encrypted CAPWAP.