Which benefit of FlexVPN is a limitation of DMVPN using IKEv1?
Click on the arrows to vote for the correct answer
A. B. C. D.B.
Flex VPN and DM VPN are both technologies used for creating Virtual Private Networks ( VPNs), but they have different benefits and limitations.
Flex VPN is a framework for configuring and deploying different types of VPNs, including site-to-site, remote access, and hub-and-spoke topologies. It provides a unified approach to configuring and managing VPNs, which simplifies the deployment and reduces operational overhead. One of the benefits of Flex VPN is that it supports multiple key exchange protocols, including IKEv2, which provides better security than IKEv1, the protocol used in DM VPN.
On the other hand, DM VPN is a technology used for building scalable and dynamic VPNs using a combination of different protocols, including GRE, IPsec, and NHRP. It allows multiple sites to connect to a hub site without the need for a full mesh of tunnels. This reduces the configuration complexity and provides better scalability. However, DM VPN using IKEv1 has some limitations compared to Flex VPN.
The answer to the question is A. GRE encapsulation allows for forwarding of non-IP traffic. This is a benefit of Flex VPN that is a limitation of DM VPN using IKEv1. GRE is a protocol used for encapsulating different types of traffic, including non-IP traffic such as IPX and AppleTalk. Flex VPN supports GRE encapsulation, which allows for forwarding of non-IP traffic over the VPN. On the other hand, DM VPN using IKEv1 does not support GRE encapsulation, which means that non-IP traffic cannot be forwarded over the VPN.
B. IKE implementation can install routes in routing table is a benefit of DM VPN using IKEv1 that is not a limitation of Flex VPN. IKEv1 is used in DM VPN to establish the IPsec tunnels between the different sites. One of the benefits of IKEv1 is that it can install routes in the routing table, which allows for dynamic routing protocols to be used over the VPN.
C. NHRP authentication provides enhanced security is not relevant to the comparison between Flex VPN and DM VPN using IKEv1. NHRP is a protocol used in DM VPN to provide dynamic mapping between the IP addresses of the different sites and their NBMA addresses. NHRP authentication provides an additional layer of security by verifying the authenticity of NHRP messages.
D. Dynamic routing protocols can be configured is a benefit of DM VPN using IKEv1 that is not a limitation of Flex VPN. As mentioned earlier, IKEv1 can install routes in the routing table, which allows for dynamic routing protocols such as OSPF and EIGRP to be used over the VPN. This provides better scalability and reduces the configuration overhead.
In summary, Flex VPN and DM VPN using IKEv1 have different benefits and limitations. Flex VPN supports GRE encapsulation, which allows for forwarding of non-IP traffic over the VPN, while DM VPN using IKEv1 can install routes in the routing table, which allows for dynamic routing protocols to be used over the VPN.