How does a Cisco SD-WAN device establish a control plane tunnel with vSmart, and what security is used?

Study for the CCNP Software-Defined Wide Area Network (SD-WAN) Exam. Master key concepts with flashcards and multiple choice questions, each complete with hints and explanations. Gear up to ace your exam!

Multiple Choice

How does a Cisco SD-WAN device establish a control plane tunnel with vSmart, and what security is used?

Explanation:
In Cisco SD-WAN, the control plane between an edge device and the vSmart controller is secured with TLS and mutual authentication. The edge and vSmart authenticate each other using certificates, establishing a TLS session that encrypts and protects all control messages. The overlay management protocol (OMP) then runs over this TLS control channel, carrying routing, policy, and reachability information between the edge and vSmart. This setup provides strong authentication and encryption for control traffic, which is why this option is correct. SSH with a password, UDP with no encryption, or IPsec for the control plane do not reflect how the SD-WAN control plane is securely transported and authenticated.

In Cisco SD-WAN, the control plane between an edge device and the vSmart controller is secured with TLS and mutual authentication. The edge and vSmart authenticate each other using certificates, establishing a TLS session that encrypts and protects all control messages. The overlay management protocol (OMP) then runs over this TLS control channel, carrying routing, policy, and reachability information between the edge and vSmart. This setup provides strong authentication and encryption for control traffic, which is why this option is correct. SSH with a password, UDP with no encryption, or IPsec for the control plane do not reflect how the SD-WAN control plane is securely transported and authenticated.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy