When designing remote access to the Enterprise Campus network for teleworkers and mobile
workers, which of the following should the designer consider?
A.
It is recommended to place the VPN termination device in line with the Enterprise Edge firewall,
with ingress traffic limited to SSL only
B.
Maintaining access rules, based on the source IP of the client, on an internal firewall drawn
from a headend RADIUS server is the most secure deployment
C.
VPN Headend routing using Reverse Route Injection (RRI) with distribution is recommended
when the remote user community is small and dedicated DHCP scopes are in place
D.
Clientless SSL VPNs provide more granular access control than SSL VPN clients (thin or thick),
including at Layer7
D