Which SD-WAN tunnel protocol secures overlay traffic between WAN Edge devices?

Prepare for the CCNP SD-WAN Exam. Practice with flashcards, multiple choice questions, hints, and explanations. Boost your confidence for the test.

Multiple Choice

Which SD-WAN tunnel protocol secures overlay traffic between WAN Edge devices?

Explanation:
In SD-WAN, the data carried across the overlay between WAN Edge devices must be protected, and that protection comes from encryption at the tunnel level. DTLS/TLS provides this security by encrypting the traffic inside the tunnel, authenticating the endpoints, and ensuring data integrity as it moves between edge devices. This makes it the appropriate choice for securing overlay traffic. GRE is just an encapsulation mechanism; it can carry packets but does not encrypt them by itself. CAPWAP is a protocol used to manage wireless APs, not for securing WAN edge tunnels. VXLAN is an overlay encapsulation for extending Layer 2 across a Layer 3 network and, on its own, does not include encryption.

In SD-WAN, the data carried across the overlay between WAN Edge devices must be protected, and that protection comes from encryption at the tunnel level. DTLS/TLS provides this security by encrypting the traffic inside the tunnel, authenticating the endpoints, and ensuring data integrity as it moves between edge devices. This makes it the appropriate choice for securing overlay traffic.

GRE is just an encapsulation mechanism; it can carry packets but does not encrypt them by itself. CAPWAP is a protocol used to manage wireless APs, not for securing WAN edge tunnels. VXLAN is an overlay encapsulation for extending Layer 2 across a Layer 3 network and, on its own, does not include encryption.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy