Implementing and Operating Cisco Service Provider Network Core Technologies (SPCOR) — Question 189

A network architect plans to implement MPLS OAM to provide additional troubleshooting functionality for the NOC team. After analyzing the configuration on the
MPLS P/PE nodes, the architect decides to revise the CoPP policies. Which two actions ensure that the new solution is secure? (Choose two.)

Answer options

• A. Allow port 3505 in the outbound direction only.
• B. Allow the ICMP protocol only.
• C. Allow the TCP and UDP protocols.
• D. Allow the UDP protocol only.
• E. Allow port 3503 in the inbound direction only.

Correct answer: D, E

Explanation

The correct answers are D and E because allowing only the UDP protocol and permitting port 3503 in the inbound direction helps to restrict traffic to what is necessary for MPLS OAM operations, thereby enhancing security. Options A, B, and C are not as secure since they either allow broader traffic or protocols that may not be necessary for the intended functionality.