which one of the following is correct?



Based on the provided ASDM configuration for the remote ASA, which one of the following is
correct?



Based on the provided ASDM configuration for the remote ASA, which one of the following is
correct?

A.
An access-list must be configured on the outside interfaceto permit inbound VPN traffic

B.
A route to 192.168.22.0/24 will not be automatically installed in the routing table

C.
The ASA will use a window of 128 packets (64×2) to perform the anti-replay check _

D.
The tunnel can also be established on TCP port 10000

Explanation:

Cisco IP security (IPsec) authentication provides anti-replay protection against an attacker
duplicating encrypted packets by assigning a unique sequence number to each encrypted packet.
The decryptor keeps track of which packets it has seen on the basis of these numbers. Currently,
the default window size is 64 packets. Generally, this number (window size) is sufficient, but there
are times when you may want to expand this window size. The IPsec Anti-Replay Window:
Expanding and Disabling feature allows you to expand the window size, allowing the decryptor to
keep track of more than 64 packets.



Leave a Reply 0

Your email address will not be published. Required fields are marked *