Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Cisco Exam 300-730 Topic 13 Question 109 Discussion

Actual exam question for Cisco's 300-730 exam
Question #: 109
Topic #: 13
[All 300-730 Questions]

What is a characteristic of GETVPN?

Show Suggested Answer Hide Answer
Suggested Answer: D

In GETVPN, all group members share a common security association (SA) database and the same keys for encryption and decryption. This approach avoids the need for per-peer IPsec SAs and simplifies the configuration and management of the VPN. Instead of using multiple SAs, GETVPN uses a single SA with a unique Group Domain of Interpretation (GDOI) group key that is distributed to all group members.


by Ashton at Apr 29, 2025, 09:23 PM

Limited Time Offer

25%

Off

Get Premium 300-730 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Ashlyn
12 days ago
But doesn't Quick mode being used to create an IPsec SA also a characteristic of GETVPN?
upvoted 0 times
...
Jame
28 days ago
I disagree, I believe it is the ACL that defines interesting traffic must be configured and applied to the crypto map.
upvoted 0 times
...
Murray
1 months ago
Wait, is this a trick question? I thought GETVPN was all about group encryption, not ACLs and crypto maps!
upvoted 0 times
...
Ashlyn
1 months ago
I think the characteristic of GETVPN is that all peers have one IPsec SPI for inbound and outbound communication.
upvoted 0 times
...
Mitsue
1 months ago
C is a tempting choice, but I'm pretty sure GETVPN doesn't use crypto maps like traditional IPsec.
upvoted 0 times
Raylene
3 days ago
A) An ACL that defines interesting traffic must be configured and applied to the crypto map.
upvoted 0 times
...
...
Jutta
1 months ago
Hah, D is just plain wrong. GETVPN uses a group security association, not individual IPsec SAs.
upvoted 0 times
Tyra
20 hours ago
C) The remote peer for the IPsec session is configured as part of the crypto map.
upvoted 0 times
...
Shala
18 days ago
B) Quick mode is used to create an IPsec SA.
upvoted 0 times
...
Jonell
1 months ago
A) An ACL that defines interesting traffic must be configured and applied to the crypto map.
upvoted 0 times
...
...
Josue
1 months ago
B seems like the right answer to me. GETVPN uses IKE quick mode, not main mode.
upvoted 0 times
...
Donette
2 months ago
I think the correct answer is A. The ACL is a key part of GETVPN to define the interesting traffic.
upvoted 0 times
Angella
11 days ago
I'm not sure, but I think the remote peer is configured in the crypto map.
upvoted 0 times
...
Kirk
15 days ago
I think it's actually D, all peers sharing one SPI.
upvoted 0 times
...
Jennifer
1 months ago
I agree, the ACL is crucial in GETVPN.
upvoted 0 times
...
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77