When designing remote access to the Enterprise Campus network for teleworkers and mobile workers, which of the following should the designer consider?
A . It is recommended to place the VPN termination device in line with the Enterprise Edge firewall, with ingress traffic limited to SSL only
B . Maintaining access rules, based on the source IP of the client, on an internal firewall drawn from a headend RADIUS server is the most secure deployment
C . VPN Headend routing using Reverse Route Injection (RRI) with distribution is recommended when the remote user community is small and dedicated DHCP scopes are in place
D . Clientless SSL VPNs provide more granular access control than SSL VPN clients (thin or thick), including at Layer7
Answer: D
Leave a Reply