FCSS – Enterprise Firewall Administrator 7.4 — Question 50

An administrator is designing an ADVPN network for a large enterprise with spokes that have varying numbers of internet links. They want to avoid a high number of routes and peer connections at the hub.
Which method should be used to simplify routing and peer management?

Answer options

• A. Deploy a full-mesh VPN topology to eliminate hub dependency.
• B. Implement static routing over IPsec interfaces for each spoke.
• C. Use a dynamic routing protocol using loopback interfaces to streamline peers and routes.
• D. Establish a traditional hub-and-spoke VPN topology with policy routes.

Correct answer: C

Explanation

The correct answer is C, as utilizing a dynamic routing protocol with loopback interfaces helps to manage peers and routes more efficiently in an ADVPN setup. Options A and D would complicate the routing by either creating too many connections or relying heavily on a central hub. Option B does not effectively address the need for scalability and dynamic management in a diverse network environment.