Answer-first summary for fast verification
Answer: Set the dead peer detection (DPD) timeout action to Restart. Initiate traffic from on premises to the VPC.
The correct approach to bring up the IKE session if it goes down involves understanding the role of Dead Peer Detection (DPD) in maintaining the VPN connection. DPD is used to detect if a VPN peer is no longer responding. When the DPD timeout action is set to 'Restart', it means that the VPN connection will attempt to restart the IKE session if the peer is detected as dead. This is particularly useful in scenarios where the IKE session ends unexpectedly, as it allows for automatic recovery of the VPN connection. Initiating traffic from on premises to the VPC ensures that the VPN connection is actively used, which can help in re-establishing the IKE session. Therefore, the correct action is to set the DPD timeout action to 'Restart' and initiate traffic from on premises to the VPC, making option B the correct choice.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
What steps should the network engineer take to re-establish the IKE session if it goes down, given that the IKE session termination coincides with the failure of the connection to the application hosted in the VPC?
A
Set the dead peer detection (DPD) timeout action to Clear. Initiate traffic from the VPC to on premises.
B
Set the dead peer detection (DPD) timeout action to Restart. Initiate traffic from on premises to the VPC.
C
Set the dead peer detection (DPD) timeout action to None. Initiate traffic from the VPC to on premises.
D
Set the dead peer detection (DPD) timeout action to Cancel. Initiate traffic from on premises to the VPC.
No comments yet.