Which statements about smart tunnels on a Cisco firewal…

Which statements about smart tunnels on a Cisco firewall are true? (Choose two.)

Which statements about smart tunnels on a Cisco firewall are true? (Choose two.)

A.
Smart tunnels can be used by clients that do not have administrator privileges

B.
Smart tunnels require the client to have the application installed locally

C.
Smart tunnels offer better performance than port forwarding

D.
Smart tunnels support all operating systems

Explanation:
Brad
Answer- A and CConfidence level: 90%
Note: Smart tunnels are clientless, which is why I am pretty sure B is an incorrect answer.
BD
Smart Tunnel is an advanced feature of Clientless SSL VPN that provides seamless and highly secure remote
access for native client-server applications.
Clientless SSL VPN with Smart Tunnel is the preferred solution for allowing access from non-corporate assets
as it does not require the administrative rights.
Port forwarding is the legacy technology for supporting TCP based applications over a Clientless SSL VPN
connection. Unlike port forwarding, Smart Tunnel simplifies the user experience by not requiring the user
connection of the local application to the local port.
Source: http://www.cisco.com/c/dam/en/us/solutions/collateral/enterprise/design-zone-security/tunnel.pdf



Leave a Reply 1

Your email address will not be published. Required fields are marked *


Jhon Salchichon

Jhon Salchichon

Answer is A,B

Smart Tunnel is also used to provide remote access to web applications that are difficult to rewrite, such as proprietary, non-standards-based Java, Java Script, or Flash animations.
Smart Tunnel also supports Single Sign-On to web applications that require either form-based POST parameters, http basic, FTP, or NTLM authentication
Smart Tunnel can also co-exist with a Full-Tunnel VPN Client. For example, an employee can connect to the company network by using Full-Tunnel VPN Client, while simultaneously connecting to a vendor network by using Smart Tunnel.
Smart Tunnel Advantages over Port-Forwarding, Plug-ins
Smart Tunnel offers better performance than browser plug-ins.
Port forwarding is the legacy technology for supporting TCP-based applications over a Clientless SSL VPN connection. Unlike port forwarding, Smart Tunnel simplifies the user experience by not requiring the user connection of the local application to the local port.
Smart Tunnel does not require users to have administrator privileges.
Smart Tunnel does not require the administrator to know application port numbers in advance.