exam questions

Exam 300-425 All Questions

View all questions & answers for the 300-425 exam

Exam 300-425 topic 1 question 141 discussion

Actual exam question from Cisco's 300-425
Question #: 141
Topic #: 1
[All 300-425 Questions]

An engineer designs a new wireless network that uses a Cisco Catalyst 9800 Series wireless controller. The controller must be in a DMZ. The internal network is to be at the main on-premises data center of the customer. In addition, the customer wants to establish an EoIP tunnel to a Cisco 5520 WLC that is in a regional office. How must this requirement be incorporated into the design?

  • A. Use Cisco IOS-XE code that supports encryption of the data plane on the Catalyst 9800 WLC.
  • B. Use AirOS code that supports encryption of the control plane on the 5520 WLC.
  • C. Use Cisco IOS-XE code that supports encryption of the control plane on the Catalyst 9800 WLC.
  • D. Use AirOS code that supports encryption of the data plane on the 5520 WLC.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Bandito
Highly Voted 11 months, 1 week ago
Selected Answer: B
On the 9800 WLC, control plane encryption is always enabled, which means that you need to have secure mobility enabled on the AireOS side. However, data link encryption is optional. If you enable it on the 9800 side, enable it on AireOS with: config mobility group member data-dtls enable https://www.cisco.com/c/en/us/support/docs/wireless/catalyst-9800-series-wireless-controllers/213913-building-mobility-tunnels-on-catalyst-98.html
upvoted 7 times
abam_
7 months, 1 week ago
B is correct
upvoted 1 times
...
...
Love2Cod3
Most Recent 22 hours, 54 minutes ago
Selected Answer: B
Provided answer is correct. "AireOS uses EoIP tunnels for mobility. Support for CAPWAP based encrypted mobility (Secure Mobility) was brought in in 8.5. However the support for IRCM with Catalyst 9800 wireless controller is present only in 8.8.111 and above and in the 8.5 IRCM supported release." https://www.cisco.com/c/en/us/td/docs/wireless/controller/technotes/8-8/b_c9800_wireless_controller-aireos_ircm_dg.html#id_85243
upvoted 1 times
...
Jonycici
2 months, 2 weeks ago
Question is tricky because 9800s don't support EoIP tunnel, only UDP 16667 for data.
upvoted 1 times
...
Farhad123
2 months, 3 weeks ago
B is correct , encryption of the control plane regarding 5520 is required. for 9800 we dont need to enable encryption for control plan as it is enabled by default
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago