SNCF — Securing Networks with Firepower — Question 152

An engineer is setting up a remote access VPN on a Cisco FTD device and wants to define which traffic gets sent over the VPN tunnel. Which named object type in Cisco FMC must be used to accomplish this task?

Answer options

• A. crypto map
• B. split tunnel
• C. access list
• D. route map

Correct answer: C

Explanation

The correct answer is C, access list, as it is used to define which traffic is allowed through the VPN tunnel. Options A, B, and D do not serve this specific function; a crypto map is related to establishing the VPN, a split tunnel pertains to deciding which traffic goes through the tunnel versus the local network, and a route map is used for controlling routing rather than VPN traffic selection.