Exam 300-415 topic 1 question 26 discussion

Also C could be correct. (google AI) 1. The WAN Edge router's real IP address and port are contained in a message. 2. The vBond controller receives the message and sends a notification to the WAN Edge router that it's behind a NAT. 3. The WAN Edge router updates its OMP TLOC route with the information and sends it to the vSmart controller. 4. The vSmart controller re-advertises the information across the overlay fabric. All WAN Edge routers in the fabric can use the correct IP and port values to establish communication.

To provide redundancy for the Cisco SD-WAN Validator, you can create multiple Cisco SD-WAN Validator entities in the network and point all edge routers to those Cisco SD-WAN Validators. Each Cisco SD-WAN Validator maintains a permanent DTLS connection with each Cisco Catalyst SD-WAN Controller in the network

A is correct

I think D is the correct answer, vBond establishes secure connections with all via IPSec, not only vSmart, but also vManage, WAN Edges, so Answer D is correct.

We know which one is right, but which one would be on the exam..

I believe it is D. It maintains vSmart and WAN Edge routers secure connectivity state.

I support A as correct. see below: "The DTLS connections with edge routers are temporary; once the Cisco vBond Orchestrator has matched a edge router with a Cisco vSmart Controller, there is no need for the Cisco vBond Orchestrator and the edge router to communicate with each other. The Cisco vBond Orchestrator shares only the information that is required for control plane connectivity, and it instructs the proper edge routers and Cisco vSmart Controllers to initiate secure connectivity with each other. The Cisco vBond Orchestrator maintains no state."

A is correct The DTLS connections with Cisco vSmart Controllers are permanent so that the vBond controller can inform the Cisco vSmart Controllers as edge routers join the network. The DTLS connections with edge routers are temporary; once the Cisco vBond Orchestrator has matched a edge router with a Cisco vSmart Controller, there is no need for the Cisco vBond Orchestrator and the edge router to communicate with each other. https://www.cisco.com/c/en/us/td/docs/routers/sdwan/configuration/sdwan-xe-gs-book/system-overview.html

A is correct

vbond does not use OMP

A: Control plane connection: Each Cisco vBond Orchestrator has a persistent control plane connection in the form of a DTLS tunnel with each Cisco vSmart Controller in its domain. https://www.cisco.com/c/en/us/td/docs/routers/sdwan/configuration/sdwan-xe-gs-book/system-overview.html

A is the correct answer

D is correct Vbond make secure connectivity between Vedge and vsmart

A is the correct answer, C is incorrect because vBond do not use OMP

A. Is correct. The major components of the Cisco vBond Orchestrator are: Control plane connection: Each Cisco vBond Orchestrator has a persistent control plane connection in the form of a DTLS tunnel with each Cisco vSmart Controller in its domain. In addition, the Cisco vBond Orchestrator uses DTLS connections to communicate with edge routers when they come online, to authenticate the router, and to facilitate the router's ability to join the network. Basic authentication of an edge router is done using certificates and RSA cryptography. NAT traversal: The Cisco vBond Orchestrator facilitates the initial orchestration between edge routers and Cisco vSmart Controllers when one or both of them are behind NAT devices. Standard peer-to-peer techniques are used to facilitate this orchestration. Load balancing: In a domain with multiple Cisco vSmart Controllers, the Cisco vBond Orchestrator automatically performs load balancing of edge routers across the Cisco vSmart Controllers when routers come online. https://www.cisco.com/c/en/us/td/docs/routers/sdwan/configuration/sdwan-xe-gs-book/system-overview.html#c_Components_of_the_Viptela_SEN_9290.xml

Cisco vBond Orchestrator—The Cisco vBond Orchestrator automatically orchestrates connectivity between edge routers and Cisco vSmart Controllers. If any edge router or Cisco vSmart Controller is behind a NAT, the Cisco vBond Orchestrator also serves as an initial NAT-traversal orchestrator. https://www.cisco.com/c/en/us/td/docs/routers/sdwan/configuration/sdwan-xe-gs-book/system-overview.html

A seems correct because vBond maintains permanent connections with vSmart. vBond doesn't use OMP.