which statement is correct?

You have a group IPsec VPN established with a single key server and five client devices.
Regarding this scenario, which statement is correct?

You have a group IPsec VPN established with a single key server and five client devices.
Regarding this scenario, which statement is correct?

A.
There are five unique Phase 1 security associations and one unique Phase 2 security
association used for this group.

B.
There are five unique Phase 1 security associations and five unique Phase 2 security
associations used for this group.

C.
There is one unique Phase 1 security association and one unique Phase 2 security
association used for this group.

D.
There is one unique Phase 1 security association and five unique Phase 2 security
associations used for this group.

← Previous question

Next question →

Leave a Reply 2

ahmed

Group VPN is client/server architecture. All members have a unique Phase 1 IKE SA with the key server. Hence, if there are n members, there is a total of n Phase 1 IKE SAs. However, the entire group shares a single Phase 2 SA.

Reply

LSYS

Correct: A
https://www.juniper.net/documentation/en_US/junos15.1/topics/concept/group-vpn-mx-overview.html
As Ahmed said:
Group VPN is client/server architecture. All members have a unique Phase 1 IKE SA with the key server. Hence, if there are n members, there is a total of n Phase 1 IKE SAs. However, the entire group shares a single Phase 2 SA.

Reply