ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-430 All Questions

View all questions & answers for the 300-430 exam
Go to Exam

Exam 300-430 topic 1 question 16 discussion

Actual exam question from Cisco's 300-430
Question #: 16
Topic #: 1
[All 300-430 Questions]

A corporation has employees working from their homes. A wireless engineer must connect 1810 OEAP at remote teleworker locations. All configuration has been completed on the controller side, but the network readiness is pending. Which two configurations must be performed on the firewall to allow the AP to join the controller? (Choose two.)

  • A. Block UDP ports 1812 and 1813 on the firewall.
  • B. Enable NAT Address on the 5520 with an Internet-routable IP address.
  • C. Configure a static IP on the OEAP 1810.
  • D. Allow UDP ports 5246 and UDP port 5247 on the firewall.
  • E. Allow UDP ports 12222 and 12223 on the firewall.
Show Suggested Answer Hide Answer
Suggested Answer: BD 🗳️
by Henry_008 at Nov. 20, 2022, 6:21 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
rrahim
2 months, 3 weeks ago
Selected Answer: DE
D. Allow UDP ports 5246 and UDP port 5247 on the firewall. These ports are used for communication between the OEAP and the WLC (Wireless LAN Controller). Allowing them ensures the OEAP can establish a connection to the controller. E. Allow UDP ports 12222 and 12223 on the firewall. These ports are also used for CAPWAP (Control and Provisioning of Wireless Access Points) communication between the OEAP and the WLC, enabling the AP to join the controller.
upvoted 1 times
...
GoldLeader
9 months, 3 weeks ago
Selected Answer: BD
Going with B. and D. on this one but I agree with anagy11 comment that the wording "on the firewall" is confusing. D. and E. would be the only 2 answers that you make sense from that perspective but OEAP does not require ports 12222 and 12223 so E. makes no sense in that regard. Terrible question wording. Corporate Firewall The Wireless LAN Controller should be placed in DMZ and the corporate Firewall must allow CAPWAP Control and CAPWAP Data traffic through the Firewall to the Wireless LAN Controller.The general configuration on the firewall is to allow CAPWAP control and CAPWAP management port numbers through the firewall. Note The UDP 5246 and 5247 ports need to be opened on the firewall for communication between the Wireless LAN controller and the Cisco OfficeExtend Access Point 1810.
upvoted 1 times
...
anagy11
10 months, 1 week ago
Selected Answer: BD
Strange question wording... "Which two configurations must be performed on the firewall to allow the AP to join the controller?" on the firewall...
upvoted 2 times
...
qqqqqqqqqqq123
1 year, 5 months ago
B. Enable NAT Address on the 5520 with an Internet-routable IP address. & D. Allow UDP ports 5246 and UDP port 5247 on the firewall. is correct https://mrncciew.com/2013/03/12/how-does-oeap-work/
upvoted 3 times
...
Henry_008
1 year, 5 months ago
should be DE?
upvoted 2 times
PauBau
1 year, 1 month ago
Agree, it is D and E.D. Allow UDP ports 5246 and UDP port 5247 on the firewall: These are the default ports used by lightweight APs to communicate with the WLC for control and data traffic. E. Allow UDP ports 12222 and 12223 on the firewall: These are the default ports used by CAPWAP for APs to communicate with the WLC.
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago