Implementing Secure Solutions with Virtual Private Networks (SVPN) — Question 31

Which two statements about the Cisco ASA Clientless SSL VPN solution are true? (Choose two.)

Answer options

• A. When a client connects to the Cisco ASA WebVPN portal and tries to access HTTP resources through the URL bar, the client uses the local DNS to perform FQDN resolution.
• B. The rewriter enable command under the global webvpn configuration enables the rewriter functionality because that feature is disabled by default.
• C. A Cisco ASA can simultaneously allow Clientless SSL VPN sessions and AnyConnect client sessions.
• D. When a client connects to the Cisco ASA WebVPN portal and tries to access HTTP resources through the URL bar, the ASA uses its configured DNS servers to perform FQDN resolution.
• E. Clientless SSLVPN provides Layer 3 connectivity into the secured network.

Correct answer: C, D

Explanation

Options C and D are correct because a Cisco ASA can indeed support both Clientless SSL VPN sessions and AnyConnect client sessions simultaneously, and when accessing resources, the ASA uses its own configured DNS servers for FQDN resolution. Option A is incorrect as it incorrectly states that the client uses local DNS, and option E is wrong because Clientless SSL VPN does not provide Layer 3 connectivity.