The IT department discovered during the last network migration that all zero phase selectors in phase 2 IPsec configurations impacted network operations. What are two valid approaches to prevent this during future migrations? (Choose two.)
A.
Use routing protocols to specify allowed subnets over the tunnel.
B.
Configure an IPsec-aggregate to create redundancy between each firewall peer.
C.
Clearly indicate to the VPN which segments will be encrypted in the phase two selectors.
D.
Configure an IP address on the IPsec interface of each firewall to establish unique peer connections and avoid impacting network operations.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Tweefo
2 weeks, 5 days ago