Disadvantage of Setting Up Site-to-Site VPN in a Clustered-Units Environment

C.

In a clustered-units environment, multiple devices are grouped together to work as a single logical unit. In this setup, a site-to-site VPN connects two or more networks securely over the internet. Each device in the cluster can act as a master unit, and only one device serves as the active master unit at any given time.

The disadvantage of setting up a site-to-site VPN in a clustered-units environment is that VPN connections must be re-established when a new master unit is elected. This is because the new master unit may have a different IP address or configuration than the previous master unit, and the VPN tunnels are configured to connect to the IP address of the active master unit.

Option A is incorrect because VPN connections can be re-established if any of the cluster units recovers, not just the failed master unit. Option B is incorrect because Smart License is not required to maintain VPN connections simultaneously across all cluster units. Option D is incorrect because established VPN connections are maintained when a new master unit is elected, but new connections must be re-established.

Therefore, option C is the correct answer. When a new master unit is elected, the VPN tunnels must be re-established to connect to the new active master unit. This can result in a brief interruption in the VPN connection, which may cause issues for applications and users that rely on the connection. To minimize the impact of this interruption, it is important to configure the VPN tunnels with redundant paths and failover options.