Designing Cisco Enterprise Networks (ENSLD) — Question 182

Prior to establishing full-mesh IPsec tunnels in a typical Cisco SD-WAN deployment, which mechanism do WAN Edge routers use to exchange key information for data plane encryption?

Answer options

• A. They use vSmart controllers as key exchange servers.
• B. They use IKEv2 when exchanging keys with each other.
• C. They use vManage as a key exchange server.
• D. They use vBond as a key exchange server.

Correct answer: A

Explanation

The correct answer is A because WAN Edge routers utilize vSmart controllers to facilitate the key exchange necessary for secure data plane encryption. Options B, C, and D are incorrect as IKEv2 is not the method used in this context, and vManage and vBond do not serve as key exchange servers for the establishment of IPsec tunnels.