Cisco 300-730 SVPN Exam Practice Test Instant Access

Question 1

Refer to the exhibit.

Which component must be configured on routers for a GETVPN deployment work properly?

APE3: Key Server -- Customer 2 CEs: Group Members

BCustomer 1 CE1: Key Server -- R1 and Customer 1 CE2: Group Members

CR1: Key Server -- Customer 1 CEs: Group Members

DPE3: Key Server -- all CEs: Group Members

Answer : A

Question 2

Refer to the exhibit.

Based on the output of the show run command, which remote access VPN technology is configured?

APPTP

BSSLVPN Full Tunnel

CFlexVPN

Dclientless SSLVPN

Answer : C

Question 3

What are two differences between ECC and RSA? (Choose two.)

AKey generation in ECC is slower and more CPU intensive than RSA.

BECC can have the same security as RSA but with a shorter key size.

CECC cannot have the same security as RSA, even with an increased key size.

DKey generation in ECC is faster and less CPU intensive than RSA.

EECC lags in performance when compared with RSA.

Answer : B, D

Question 4

Which VPN technology minimizes the impact on VPN performance when encrypting multicast traffic on a Private WAN?

ADMVPN

BIPsec VPN

CFlexVPN

DGETVPN

Answer : D

Question 5

A network engineer is implementing a FlexVPN tunnel between two Cisco IOS routers. The FlexVPN tunnels will terminate on encrypted traffic on an interface configured with an IP MTU of 1500, and the company has a security policy to drop fragmented traffic coming into or leaving the network. The tunnel will be used to transfer TFTP data between users and internal servers. When the TFTP traffic is not traversing a VPN, it can have a maximum IP packet size of 1500. Assuming the encrypted payload will add 90 bytes, which configuration allows TFTP traffic to traverse the FlexVPN tunnel without being dropped?

ASet the tunnel IP MTU to 1500.

BSet the tunnel tcp adjust-mss to 1460.

CSet the tunnel IP MTU to 1400.

DSet the tunnel tcp adjust-mss to 1360.

Answer : D

Question 6

What are two advantages of using GETVPN to traverse over the network between corporate offices? (Choose two.)

AIt has unique session keys for improved security.

BIt supports multicast.

CIt has QoS support.

DIt is a highly scalable any to any mesh topology.

EIt supports a hub-and-spoke topology.

Answer : B, D

Question 7

An organization wants to distribute remote access VPN load across 12 VPN headend locations supporting 25,000 simultaneous users. Which load balancing method meets this requirement?

Aone VPN profile per site

BDNS-based load balancing

CAnyConnect native load balancing

Dequal cost, multipath load balancing

Answer : B

Cisco 300-730 Implementing Secure Solutions with Virtual Private Networks SVPN Exam Practice Test