Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Cisco 300-410 Exam - Topic 11 Question 119 Discussion

Actual exam question for Cisco's 300-410 exam
Question #: 119
Topic #: 11
[All 300-410 Questions]

Refer to the exhibit.

An engineer must configure a LAN-to-LAN IPsec VPN between R1 and the remote router. Which IPsec

Phase 1 configuration must the engineer use for the local router?

Show Suggested Answer Hide Answer
Suggested Answer: A

Explanation

In the ''crypto isakmp key ... address '' command, the address must be of the IP address of the other

end (which is 200.1.1.3 in this case) so Option A and Option B are correct. The difference between

these two options are in the hash SHA or MD5 method but both of them can be used although SHA is

better than MD5 so we choose Option A the best answer.

Note: Cisco no longer recommends using 3DES, MD5 and DH groups 1, 2 and 5.


5/sec-ipsec-management-xe-16-5-book/sec-ipsec-usability-enhance.html

by Nadine at Nov 24, 2025, 05:33 AM

Limited Time Offer

25%

Off

Get Premium 300-410 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Marti
5 days ago
I prefer option B. MD5 is more reliable for hashing.
upvoted 0 times
...
Arthur
10 days ago
Group 2 is standard, but I’d double-check the encryption choice.
upvoted 0 times
...
Malcom
29 days ago
I’m leaning towards A, but not sure about the key address.
upvoted 0 times
...
Elin
1 month ago
Wait, why is everyone ignoring option D?
upvoted 0 times
...
Brent
1 month ago
Option A looks solid with 3des and sha.
upvoted 0 times
...
France
1 month ago
Haha, "crypto isakmp key cisco123!" - that's one secure password!
upvoted 0 times
...
Lauran
2 months ago
The question is pretty straightforward, but I'm still scratching my head.
upvoted 0 times
...
Mitsue
2 months ago
D seems a bit off, but I'm not sure.
upvoted 0 times
...
Johnetta
2 months ago
I think C is the correct answer.
upvoted 0 times
...
Lonna
2 months ago
I’m leaning towards option D, but I’m not completely confident about the address format. I need to double-check that part.
upvoted 0 times
...
Brandee
2 months ago
I feel like the encryption type might be a trick here. I vaguely recall that 3DES is less common now, but I can't remember if it was a requirement for this setup.
upvoted 0 times
...
Sharee
3 months ago
I think the key part is the authentication method; I practiced a similar question where the pre-shared key was crucial.
upvoted 0 times
...
Harrison
3 months ago
This is a good opportunity to demonstrate my knowledge of IPsec VPN configuration. I'll make sure to read the question thoroughly and select the option that fully meets the engineer's needs.
upvoted 0 times
...
Dylan
3 months ago
Okay, I think I've got this. The key is to identify the correct authentication, encryption, and hash algorithm settings for the ISAKMP policy. I'll carefully compare the options and select the one that matches the requirements.
upvoted 0 times
...
Celestina
3 months ago
Option B looks good to me.
upvoted 0 times
...
Leota
3 months ago
I think option A is the best choice. Pre-shared key is essential.
upvoted 0 times
...
Melita
3 months ago
I remember that the IPsec Phase 1 configuration needs to match on both ends, but I'm not sure about the address specifics.
upvoted 0 times
...
Ashton
4 months ago
I think B is better because of the md5 hash.
upvoted 0 times
...
Joesph
4 months ago
MD5 has vulnerabilities, but it's still widely used. Group 2 is fine too.
upvoted 0 times
...
Martin
4 months ago
Hmm, I'm a bit confused about the difference between the IP addresses in the options. I'll need to double-check the network topology to make sure I understand where the remote router is located.
upvoted 0 times
...
Deeanna
4 months ago
This looks like a pretty straightforward IPsec VPN configuration question. I'll need to carefully review the options and match them up with the requirements.
upvoted 0 times
...

Save Cancel