Implementing and Operating Cisco Security Core Technologies (SCOR) — Question 314

A small organization needs to reduce the VPN bandwidth load on their headend Cisco ASA in order to ensure that bandwidth is available for VPN users needing access to corporate resources on the 10.0.0.0/24 local HQ network. How is this accomplished without adding additional devices to the network?

Answer options

• A. Configure VPN load balancing to distribute traffic for the 10.0.0.0/24 network.
• B. Configure VPN load balancing to send non-corporate traffic straight to the internet.
• C. Use split tunneling to tunnel traffic for the 10.0.0.0/24 network only.
• D. Use split tunneling to tunnel all traffic except for the 10.0.0.0/24 network.

Correct answer: C

Explanation

The correct answer is C because split tunneling allows only the necessary traffic for the 10.0.0.0/24 network to go through the VPN, reducing the overall bandwidth load. Options A and B suggest load balancing, which does not directly address the issue of VPN bandwidth for corporate resources, while option D would prevent access to the essential corporate network, which is not the goal.