View all questions & answers for the NSE 7 - Enterprise Firewall 7.6 Administrator Exam Materials exam


Question 59 Discussion

An administrator is designing an ADVPN network for a large enterprise with spokes that have varying numbers of internet links. They want to avoid a high number of routes and peer connections at the hub. Which method should be used to simplify routing and peer management? (Choose one answer)

  • A. Deploy a full-mesh VPN topology to eliminate hub dependency.
  • B. Implement static routing over IPsec interfaces for each spoke.
  • C. Use a dynamic routing protocol using loopback interfaces to streamline peers and routes.
  • D. Establish a traditional hub-and-spoke VPN topology with policy routes.
Correct Answer: C

Brave-Dump Clients Votes

C 100%

Comments



Adam 2026-01-20 03:21:51

Selected Answers: C


From Study Guide:
Use Case 5—ADVPN With BGP on Loopback
In this scenario, you can simplify the process by using a loopback approach. This method helps reduce the number of routes and peers at hubs.
This approach is particularly effective for sites with multiple or varying numbers of internet links and is ideal for large-scale or multiregional deployments because it simplifies the complex task of route reflection in BGP, for example.

After ADVPN establishes the on-demand VPN IPsec tunnel between Spoke 1 and Spoke 2, the client behind Spoke 1 can communicate directly with Spoke 2 without routing through the hub.
In addition, the overlay network is crucial for routing with a dynamic protocol and allows peers to advertise their local networks. Unless you include the overlay network, firewalls can’t correctly advertise local networks within the hub-and-spoke topology.