Designing Cisco Enterprise Networks (ENSLD) — Question 306
A company's security policy requires that all connections between sites be encrypted in a manner that does not require maintenance of permanent tunnels. The sites are connected through a private MPLS-based service that uses a dynamically changing key and spoke-to-spoke communication. Which type of transport encryption must be used in this environment?
Answer options
- A. GETVPN
- B. DMVPN
- C. GRE VPN
- D. standard IPsec VPN
Correct answer: A
Explanation
GETVPN is the correct answer because it allows for encryption of traffic between sites without establishing permanent tunnels, which aligns with the company's security policy. DMVPN, GRE VPN, and standard IPsec VPN typically rely on maintaining tunnels, thus not meeting the requirement specified in the question.