An engineer is configuring Local WebAuth on a Cisco Wireless LAN Controller. According to RFC 5737, which virtual IP address must be used in this configuration?
3. Documentation Address Blocks
The blocks 192.0.2.0/24 (TEST-NET-1), 198.51.100.0/24 (TEST-NET-2),
and 203.0.113.0/24 (TEST-NET-3) are provided for use in
documentation.
This can be confirmed in page 14 of this document:
https://www.cisco.com/c/en/us/td/docs/wireless/controller/9800/config-guide/web-authentication/b-configuring-web-based-authentication-on-cisco-catalyst-9800-series-controllers.pdf
RFC 5737 specifies the use of the following blocks of IP addresses for documentation purposes:
192.0.2.0/24 (TEST-NET-1)
198.51.100.0/24 (TEST-NET-2)
203.0.113.0/24 (TEST-NET-3)
These addresses are reserved for use in documentation and sample configurations and are not routable on the public Internet. The address 192.0.2.1 falls within the 192.0.2.0/24 range and is intended for such purposes, making it the correct choice for configuring Local WebAuth on a Cisco Wireless LAN Controller in this context.
i know that 192.168.2.0/24 network is recommended for test;: but here in the quetion is production so i would chosse 192.168.0.0/24... but in the real word both are correct.
RFC 5737 defines the following address blocks for documentation purposes:
192.0.2.0/24 (TEST-NET-1)
198.51.100.0/24 (TEST-NET-2)
203.0.113.0/24 (TEST-NET-3)
These address ranges are reserved for use in documentation, examples, and educational materials, and they should not be used in actual network configurations on the public internet.
It is interesting to note that 1.1.1.1 and the like are internet routable IPs and often misused for things such as L3 HA links between routers.
Worked for a company that did that, found they could not use/reach WARP DNS.
Has you wonder about common loopback and Router ID IPs.
According to RFC 5737, the virtual IP address that must be used for this configuration is 192.0.2.0/24. This is reserved for documentation and examples and should not be used in actual production networks.
3. Documentation Address Blocks
The blocks 192.0.2.0/24 (TEST-NET-1), 198.51.100.0/24 (TEST-NET-2),
and 203.0.113.0/24 (TEST-NET-3) are provided for use in
documentation.
D.
The virtual interface IP address (IPv4 or IPv6) is used only in communications between the controller and wireless clients. It serves as the redirect address for the web authentication login page. It is recommended that you configure a nonroutable IP address for the virtual interface, ideally not overlapping with the network infrastructure addresses. Use one of the options proposed in RFC 5737, for example, 192.0.2.0/24, 198.51.100.0/24, and 203.0.113.0/24 networks.
This section is not available anymore. Please use the main Exam Page.350-401 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
jj970us
Highly Voted 2 years, 7 months agoPALURDIN
2 years, 7 months agozbeugene7
7 months, 1 week ago21d1e51
11 months, 1 week agoMohaned990_go
Most Recent 9 months, 3 weeks ago[Removed]
11 months, 1 week agoShri_Fcb10
11 months, 2 weeks agoIgorLVG
1 year, 1 month agoteems5uk
1 year, 3 months agoeearmani
1 year, 3 months agodanman32
1 year, 8 months agomsstanick
1 year, 10 months agomrtattoo
1 year, 11 months agorafaelinho88
2 years, 2 months agoKasia1992
2 years, 2 months agoendy023
2 years, 3 months agobora4motion
2 years, 4 months agoIoannis34
2 years, 7 months agokebkim
2 years, 7 months agoCaledonia
2 years, 7 months ago