Implementing Cisco Collaboration Cloud and Edge Infrastructure (CLCEI) — Question 90

An engineer must fix broken SSH tunnels between Expressway-C (192.168.10.5) and Expressway-E (192.168.20.5). The engineer is advised that the packet capture shows the required packets for the SSH tunnels leaving the Expressway-C but not reaching the Expressway-E. Which firewall configuration must the engineer allow to resolve this issue?

Answer options

• A. port 2222 from Expressway-E to Expressway-C
• B. port 7001 from Expressway-C to Expressway-E
• C. port 7001 from Expressway-E to Expressway-C
• D. port 2222 from Expressway-C to Expressway-E

Correct answer: D

Explanation

The correct answer is D because SSH tunnels require specific ports to be open for communication, and in this case, port 2222 from Expressway-C to Expressway-E is necessary for the connection to be established. Options A and C are incorrect as they suggest allowing traffic in the opposite direction or incorrect port. Option B is also wrong as it addresses a different port than what is required for this scenario.