违法和不良信息举报 联系客服
免费注册 登录

Which command is needed to change this policy to a tunnel po

题目
单选题
Which command is needed to change this policy to a tunnel policy for a policy-based VPN?() [edit security policies from-zone trust to-zone untrust] user@host# show policy tunnel-traffic { match { source-address local-net; destination-address remote-net; application any; then { permit; } }
A

set policy tunnel-traffic then tunnel remote-vpn

B

set policy tunnel-traffic then permit tunnel remote-vpn

C

set policy tunnel-traffic then tunnel ipsec-vpn remote-vpn permit

D

set policy tunnel-traffic then permit tunnel ipsec-vpn remote-vpn

如果没有搜索结果或未解决您的问题,请直接 联系老师 获取答案。
相似问题和答案

第1题:

Which CLI command is used to enable L2TP tunnel switching?()

A. l2tp tunnelling

B. l2tp tunnel switching

C. l2tp tunnel-switching

D. enable l2tp tunnel switching


参考答案:C

第2题:

A complete change in policy is needed if relations are ever to improve.

A: strict
B: wide
C: ever
D:radical

答案:D
解析:
句意:如果想要改善关系,就需要从根本上改变政策。strict:严格的,wide:宽的,ev-er:曾经,radical:根本的、彻底的,最符合题意。

第3题:

Which two statements are true with regard to policy ordering? ()(Choose two.)

A. The last policy is the default policy, which allows all traffic.

B. The order of policies is not important.

C. New policies are placed at the end of the policy list.

D. The insert command can be used to change the order.


参考答案:C, D

第4题:

Which configuration keyword ensures that all in-progress sessions are re-evaluated upon committing a security policy change?()

  • A、policy-rematch
  • B、policy-evaluate
  • C、rematch-policy
  • D、evaluate-policy

正确答案:A

第5题:

Which two statements or sets of statements are true about the application of the qos pre-classify command?()

  • A、 If the classification policy is based upon the ToS byte, the qos pre-classify command is required because the ToS byte only appears in the inner IP header.
  • B、 The ToS byte is copied to the outer header by default. Therefore, the qos pre-classify command is not necessary.
  • C、 With GRE encapsulation, the qos pre-classify command is applied on the tunnel interface. This practice allows for different OoS configurations on each tunnel.
  • D、 With GRE encapsulation, the qos pre-classify command is applied on the physical interface. This practice allows for different OoS configurations on each interface.
  • E、 With IPsec encapsulation, the qos pre-classify command is applied on the physical interface. This practice allows for different OoS configurations on each interface.

正确答案:B,C

第6题:

Users are complaining of slow performance. The iostat command indicates hdiskxxx is extremely busy. There is no activity on any other hdisks in the same volume group. Which of the following is the best action to take?()

A.Change intra policy to outer

B.Change intra policy to center

C.Change inter policy to maximum

D.Increase the physical partition size


参考答案:C

第7题:

A GRE tunnel is configured between a local and a remote site. Where should the service policy be applied to classify packets based on the pretunnel header? ()

  • A、in global configuration mode, apply the service policy and use the qos pre-classify
  • B、in global configuration mode, apply the service policy but do not use the qos pre-classify command
  • C、apply the service policy on the physical interface but do not use the qos pre-classify
  • D、apply the service policy on the tunnel interface but do not use the qos pre-classify command 
  • E、apply the service policy on the tunnel interface and use the qos pre-classify command

正确答案:C

第8题:

Which configuration keyword ensures that all in-progress sessions are re-evaluated upon committing a security policy change?()

A. policy-rematch

B. policy-evaluate

C. rematch-policy

D. evaluate-policy


参考答案:A

第9题:

Which methods would enable traffic to be forwarded along an MPLS TE tunnel?()

  • A、MP-BGP routing
  • B、Static routing
  • C、Policy routing
  • D、Autoroute
  • E、Forwarding adjacency

正确答案:B,C,D,E

第10题:

Which statement about MPLS traffic engineering policy-based tunnel selection (PBTS) is not true?()

  • A、The tunnel that is not configured with the policy-class command acts as the default
  • B、EXP selection is between multiple tunnels to the same destination
  • C、There is no requirement for IGP extensions
  • D、Tunnels are configured using the policy-class command and carry multiple EXP values
  • E、It supports VRF traffic, IP-to-MPLS switching, and MPLS-to-MPLS switching

正确答案:D

更多相关问题
相关内容