Which two actions should you take to ensure that the SRX Series device renegotiates the VPN faster?

A site-to-site VPN is configured between satellite offices and headquarters using a digital certificate from a neutral party. Once the VPN is up and stable, the certificate issued by the neutral party is revoked. The next-update time is not contained in the CRL.

Which two actions should you take to ensure that the SRX Series device renegotiates the VPN faster? (Choose two.)

A site-to-site VPN is configured between satellite offices and headquarters using a digital certificate from a neutral party. Once the VPN is up and stable, the certificate issued by the neutral party is revoked. The next-update time is not contained in the CRL.

Which two actions should you take to ensure that the SRX Series device renegotiates the VPN faster? (Choose two.)

A.
Configure the SRX Series device with refresh-interval.

B.
Wait for the default timer to expire; the device will then renegotiate the VPN tunnel.

C.
Specify a URL to retrieve the CRL using HTTP or LDAP.

D.
Configure the next-update time in the CRL.

Show Hint

Leave a Reply 1

Your email address will not be published. Required fields are marked *

mr_tienvu

mr_tienvu

I agree with the answer. AC

Reply