An administrator is setting up an ADVPN configuration and wants to ensure that peer IDs are not exposed during VPN establishment. Which protocol can the administrator use to enhance security? (Choose one answer)

A. Use IKEv2, which encrypts peer IDs and prevents exposure.
B. Opt for SSL VPN web mode because it does not use peer IDs at all.
C. Choose IKEv1 aggressive mode because it simplifies peer identification.
D. Stick with IKEv1 main mode because it offers better performance.

Correct Answer: A

Brave-Dump Clients Votes

A 100%

Comments

Brave-Dumps Admin 2025-04-28 14:30:40

Selected Answers: A

A is correct
EFW 7.4 study guide page 222 confirms that,

"In IKEv1 aggressive mode, peer IDs are unencrypted and exposed, creating a security risk. Conversely, IKEv1 main mode and IKEv2 ensure peer IDs are encrypted."

Additional technical summary:
For ADVPN, IKEv2 is the best choice due to encrypted peer IDs, fewer message exchanges, superior efficiency, and improved security.