- A. Split-tunnel VPN configuration should be used to separate Internet and corporate traffic. This configuration only routes the corporate traffic through the VPN tunnel while allowing Internet traffic to access the Internet directly, providing a more secure connection and reducing the load on the VPN.
- B. Remote desktop gateway (RD Gateway) is a type of VPN that enables remote access to a Windows-based computer or virtual machine (VM). It allows users to access their desktops or applications remotely over the Internet, but it doesn't separate Internet and corporate traffic.
- C. Site-to-site VPN is a type of VPN that connects two or more networks together over the Internet. It is commonly used to connect remote offices or data centers, but it does not separate Internet and corporate traffic. It simply extends the network to another location.
- D. Out-of-band management is a method of managing network devices (such as routers, switches, and firewalls) through a separate management channel or network. It is used for troubleshooting and configuration of network devices, but it is not a VPN configuration and does not separate Internet and corporate traffic.
This answer could be split tunnel or full tunnel. Since split tunnel is the only one listed this is the best and only choice. Split tunnel VPN configuration is where only traffic for the private network is routed via the VPN gateway.
Split Tunnel VPN = Routes & encrypts only the traffic bound for the headquarters over the VPN, & sends the rest of the traffic to the regular Internet. Say you are using a Client-to-Site configuration with a split tunnel VPN from your home office, the VPN here decides which traffic goes back over the VPN to the HQ & which traffic goes back the HQ over the Internet outside it's encryption services. If you are trying to access a file, or Microsoft exchange mail server back to the HQ network, that important data is going to be assuredly encrypted in the VPN back to HQ, but if you are attending a Zoom Conference, or just accessing Office 365, or general traffic meant to travel out to the Internet, for ease of access, it will bypass your encrypted VPN connection, & go out through the public Internet to those websites. These are less secure, because an attacker can connect to your unencrypted device possibly being able to pivot through your laptop & send data over the VPN. NEVER USE SPLIT TUNNEL FROM A PUBLIC WIFI LOCATION.
GPT selects (A) Split-tunnel for this reason:
"In a split-tunnel VPN configuration, only the traffic destined for the corporate network is sent through the VPN tunnel, while Internet-bound traffic is directly routed through the user's local Internet connection. This setup effectively separates the Internet and corporate traffic, allowing users to access both resources without sending all their traffic through the corporate network. It helps optimize network resources and ensures that the corporate network is not burdened with unnecessary Internet traffic.
Options (B) Remote desktop gateway, (C) Site-to-site, and (D) Out-of-band management refer to different types of VPN configurations or network management practices, but they are not specifically designed to separate Internet and corporate traffic like the split-tunnel configuration does."
This section is not available anymore. Please use the main Exam Page.N10-008 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
StevenElev11n
Highly Voted 1 year, 3 months agoRobJob
Highly Voted 2 years, 2 months agowbear
1 year, 9 months agoMehsotopes
Most Recent 6 months, 2 weeks agoMitchF
9 months, 2 weeks agoJakeCharles
1 year, 3 months ago