ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-730 All Questions

View all questions & answers for the 300-730 exam
Go to Exam

Exam 300-730 topic 1 question 119 discussion

Actual exam question from Cisco's 300-730
Question #: 119
Topic #: 1
[All 300-730 Questions]

A network engineer is configuring a server. The router will terminate encrypted VPN connections on g0/0, which is in the VRF "Internet". The clear-text traffic that must be encrypted before being sent out traverses g0/1, which is in the VRF "Internal". Which two VRF-specific configurations allow VPN traffic to traverse the VRF-aware interfaces? (Choose two.)

  • A. Under the IKEv2 profile, add the ivrf Internal command.
  • B. Under the virtual-template interface, add the ip vrf forwarding Internet command.
  • C. Under the IKEv2 profile, add the match fvrf Internal command.
  • D. Under the IKEv2 profile, add the match fvrf Internet command.
  • E. Under the virtual-template interface, add the tunnel vrf Internet command.
Show Suggested Answer Hide Answer
Suggested Answer: DE 🗳️
by red_sparrow_Gr at Jan. 31, 2023, 7:05 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
kylesam2017
11 months, 2 weeks ago
"D and E", are the correct answer selections here. Where the router is terminating encrypted VPN connections on g0/0 in the "Internet" VRF, and clear-text traffic is traversing g0/1 in the "Internal" VRF, the correct VRF-specific configurations to allow VPN traffic to traverse VRF-aware interfaces are: Under the virtual-template interface, add the tunnel vrf Internet command. Under the IKEv2 profile, add the match fvrf Internet command. So, the correct combination is: 1) Under the virtual-template interface, add the tunnel vrf Internet command. 2) Under the IKEv2 profile, add the match fvrf Internet command. This ensures that VPN traffic from the "Internal" VRF, encapsulated by the virtual-template interface, correctly traverses the "Internet" VRF on the g0/0 interface, meeting the requirements of the described scenario.
upvoted 4 times
...
Rosh8787
11 months, 2 weeks ago
DE is the correct answer
upvoted 1 times
...
gondohwe
1 year ago
this exam source is a sucker wrong answer again showing so readers could fail
upvoted 2 times
...
Net4dd
1 year, 9 months ago
Selected Answer: DE
D and E are correct: https://www.cisco.com/c/en/us/support/docs/security/flexvpn/116000-flexvpn-config-00.html
upvoted 4 times
pfrank
10 months, 1 week ago
Yup. That's right
upvoted 1 times
...
...
red_sparrow_Gr
1 year, 10 months ago
Selected Answer: DE
I think it should be D & E crypto ikev2 profile CProfile match fvrf internet // ("out vrf") ... virtual-template 1 ... interface virtual-template 1 type tunnel vrf forwarding internal // (internal vrf) ... tunnel vrf internet // (out vrf)
upvoted 2 times
starletka
11 months ago
You mean C and E than yeah? Internal vs Internet :D
upvoted 1 times
starletka
11 months ago
my bad ... reread the question :D
upvoted 1 times
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel