Exam N10-008 topic 1 question 659 discussion

BING AI: Given the requirements, the network security technician should consider: D. Client-to-site VPN: This type of VPN allows users at multiple locations to access corporate resources securely over the internet. Each user establishes their own VPN connection to the network, which is ideal for remote workers or workers at different locations. F. Split-tunnel VPN: This type of VPN allows for a user to access the corporate network while simultaneously accessing the internet for non-corporate, resource-bound traffic. This means that only the traffic destined for the corporate network is sent through the VPN, fulfilling the requirement that on-premises equipment will not handle non-corporate, resource-bound traffic. So, the answers are D. Client-to-site VPN and F. Split-tunnel VPN. However, the final decision should be made by the network security technician based on a thorough understanding of the network’s requirements and constraints.

D. Client-to-site VPN F. Split-tunnel VPN Explanation: D. Client-to-site VPN: This type of Virtual Private Network (VPN) allows individual users to connect to the corporate network from a remote location. It is suitable when users at multiple locations need to access corporate resources. F. Split-tunnel VPN: In this VPN configuration, only traffic to the corporate network is sent via the VPN. All other traffic (i.e., non-corporate, resource-bound traffic) goes directly to the internet without passing through the VPN. This meets the requirement that the on-premises equipment will not handle non-corporate, resource-bound traffic

C. Full-tunnel VPN F. Split-tunnel VPN

i think A F

I voted E and F and Chat GPT backs up my biases, below is their reasoning why. To meet the requirements of allowing users at multiple locations to access corporate resources and ensuring that on-premises equipment does not handle non-corporate, resource-bound traffic, the network security technician should consider the following options: Site-to-Site VPN (Option E): This allows multiple office locations to connect securely, treating each remote location as part of the same network. Corporate resources can be accessed seamlessly, and on-premises equipment handles only the corporate-bound traffic. However, this might not be suitable for individual remote users. Split-Tunnel VPN (Option F): With split-tunnel VPN, only the traffic destined for the corporate network is sent through the VPN tunnel, while other traffic (non-corporate) goes directly to the internet. This helps in offloading non-corporate traffic from the corporate network and reducing the load on on-premises equipment. It is suitable for remote users, and it allows them to access both corporate and internet resources. Therefore, Options E (Site-to-Site VPN) and F (Split-Tunnel VPN) would be relevant considerations for the described scenario.

Chat Gpt says CF

a-f is correct