CompTIA 220-801 Certification Practice Test

Category - Essentials

Start a Study Session Sign up for Question of the Day

The UpwardPro.com network uses an IP proxy that provides Network Address Translation. Ted implements IPSec for all the internet bound traffic, but observes that he is still not able to access the Internet. What has led to this issue?

Network Address Translation (NAT) does not work with IPSec.
The IP proxy is blocking egress and ingress traffic on port 80.
The IP proxy is blocking egress and ingress traffic on port 1293.
The IP proxy is blocking egress and ingress traffic on port 8080.

Explanation

Answer - A - NAT does not work with IPSec since the packet gets discarded by the receiving end of the VPN connection.

Key Takeaway: A conventional NAT does not work on IPSec packets because when the packet goes through a NAT device, the source address in the packet changes, thereby invalidating the packet. When this happens, the receiving end of the VPN connection discards the packet and the VPN connection negotiations fail.

Previous Next

Was this helpful? Upvote!

Start a Study Session Sign up for Question of the Day

CompTIA 220-801 Certification Practice Test

Top questions

Related questions

Most popular on PracticeQuiz

Ad-Blocker not supported

CompTIA 220-801 Certification Practice Test

Top questions

Related questions

Most popular on PracticeQuiz