Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Juniper Exam JN0-649 Topic 2 Question 57 Discussion

Actual exam question for Juniper's JN0-649 exam
Question #: 57
Topic #: 2
[All JN0-649 Questions]

Your enterprise network is running BGP VPNs to support multitenancy. Some of the devices with which you peer BGP do not support the VPN NLRI. You must ensure that you do not send BGP VPN routes to the remote peer.

Which two configuration steps will satisfy this requirement? (Choose two.)

Show Suggested Answer Hide Answer
Suggested Answer: B, D

Apply both the VRF export and BGP group or neighbor export policies (VRF first, then BGP) before routes from the vrf or l2vpn routing tables are advertised to other PE routers.

https://www.juniper.net/documentation/us/en/software/junos/bgp/topics/ref/statement/vpn-apply-export-edit-protocols-bgp-vp.html


by Anabel at Jun 12, 2025, 02:08 PM

Limited Time Offer

25%

Off

Get Premium JN0-649 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Mignon
6 days ago
I agree with Tandra. Option B is the way to go. Why waste time configuring the remote peer when you can just handle it locally?
upvoted 0 times
...
Hillary
7 days ago
Haha, option C is a classic BGP trap! Configuring a route reflector for the VPN NLRI when the remote peer doesn't support it? That's just asking for trouble.
upvoted 0 times
...
Grover
8 days ago
Option D sounds interesting, but I'm not sure if the apply-vpn-export feature is a real thing. Isn't that just a made-up configuration step?
upvoted 0 times
...
Aretha
10 days ago
I'm not sure about option C and D. Can someone explain why we need to configure a route reflector or apply-vpn-export feature?
upvoted 0 times
...
Mozell
24 days ago
I agree with Ling. Option B is also important to reject the VPN routes being sent to the remote peer.
upvoted 0 times
...
Ling
28 days ago
I think option A is the way to go. We need to reject the routes when they are received.
upvoted 0 times
...
Tandra
1 months ago
I think option B is the correct answer. Configuring an export policy on the local BGP peer to reject the VPN routes before they are sent to the remote peer seems like the most straightforward way to solve this problem.
upvoted 0 times
Norah
4 days ago
That makes sense. By combining options A and B, we can ensure that VPN routes are not sent to the remote peer.
upvoted 0 times
...
Madelyn
26 days ago
I think we should also consider option A. Configuring an import policy on the remote peer to reject routes when received can also help.
upvoted 0 times
...
Jaclyn
1 months ago
I agree, option B is a good choice. It will prevent sending VPN routes to the remote peer.
upvoted 0 times
...
...

Save Cancel