Implementing and Operating Cisco Security Core Technologies (SCOR) — Question 521

Which method must be used to connect Cisco Secure Workload to external orchestrators at a client site when the client does not allow incoming connections?

Answer options

• A. destination NAT
• B. reverse tunnel
• C. source NAT
• D. GRE tunnel

Correct answer: B

Explanation

The correct answer is B, reverse tunnel, which allows outbound connections to be initiated from within the client's network, enabling the Cisco Secure Workload to communicate with external orchestrators without needing incoming connections. The other options, such as destination NAT and source NAT, do not facilitate this reverse connection process, and GRE tunnel is primarily used for creating point-to-point connections rather than overcoming restrictions on incoming traffic.