ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-730 All Questions

View all questions & answers for the 300-730 exam
Go to Exam

Exam 300-730 topic 1 question 96 discussion

Actual exam question from Cisco's 300-730
Question #: 96
Topic #: 1
[All 300-730 Questions]

A network engineer must design a clientless VPN solution for a company. VPN users must be able to access several internal web servers. When reachability to those web servers was tested, it was found that one website is not being rewritten correctly by the ASA. What is a potential solution for this issue while still allowing it to be a clientless VPN setup?

  • A. Set up a smart tunnel with the IP address of the web server.
  • B. Set up a NAT rule that translates the ASA public address to the web server private address on port 80.
  • C. Set up Cisco AnyConnect with a split tunnel that has the IP address of the web server.
  • D. Set up a WebACL to permit the IP address of the web server.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Tiptonlad at May 30, 2022, 3:06 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
monkeybolt
Highly Voted 1 year, 5 months ago
Tiptonlad, it would not be a clientless VPN solution if you did a direct NAT, your comment is wrong.
upvoted 6 times
...
iratus_umbra
Most Recent 3 days, 21 hours ago
Selected Answer: A
https://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/111007-smart-tunnel-asa-00.html
upvoted 1 times
...
pfrank
4 months ago
Selected Answer: A
https://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/111007-smart-tunnel-asa-00.html
upvoted 4 times
...
JKPippers
7 months ago
Answer correct is A A smart tunnel is a connection between a TCP-based application and a private site, using a clientless (browser-based) SSL VPN session with the security appliance as the pathway and the security appliance as a proxy server. https://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/111007-smart-tunnel-asa-00.html
upvoted 3 times
...
Tiptonlad
2 years ago
Selected Answer: B
The best option here would be to use a NAT address so the server is reachable. Other options would not work if a clientless VPN deployment is being used.
upvoted 3 times
gondohwe
7 months ago
bro that answer is totally out of sight...why would NAT for a clientless VPN
upvoted 2 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago