Which SD-WAN tunnel protocol secures overlay traffic between WAN Edge devices?

Study for the CCNP Software-Defined Wide Area Network (SD-WAN) Exam. Master key concepts with flashcards and multiple choice questions, each complete with hints and explanations. Gear up to ace your exam!

Multiple Choice

Which SD-WAN tunnel protocol secures overlay traffic between WAN Edge devices?

Explanation:
In SD-WAN, the data carried across the overlay between WAN Edge devices must be protected, and that protection comes from encryption at the tunnel level. DTLS/TLS provides this security by encrypting the traffic inside the tunnel, authenticating the endpoints, and ensuring data integrity as it moves between edge devices. This makes it the appropriate choice for securing overlay traffic. GRE is just an encapsulation mechanism; it can carry packets but does not encrypt them by itself. CAPWAP is a protocol used to manage wireless APs, not for securing WAN edge tunnels. VXLAN is an overlay encapsulation for extending Layer 2 across a Layer 3 network and, on its own, does not include encryption.

In SD-WAN, the data carried across the overlay between WAN Edge devices must be protected, and that protection comes from encryption at the tunnel level. DTLS/TLS provides this security by encrypting the traffic inside the tunnel, authenticating the endpoints, and ensuring data integrity as it moves between edge devices. This makes it the appropriate choice for securing overlay traffic.

GRE is just an encapsulation mechanism; it can carry packets but does not encrypt them by itself. CAPWAP is a protocol used to manage wireless APs, not for securing WAN edge tunnels. VXLAN is an overlay encapsulation for extending Layer 2 across a Layer 3 network and, on its own, does not include encryption.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy