300-410 Exam QuestionsBrowse all questions from this exam
Go to Exam

300-410 Exam - Question 101

How does an MPLS Layer 3 VPN function?

Show Answer
Correct Answer: B

In an MPLS Layer 3 VPN, customer sites interconnect through a service provider's network. The connectivity is achieved between the customer edge (CE) routers and the provider edge (PE) routers. The PE routers use Multiprotocol BGP (MP-BGP) to distribute VPN routes, while MPLS labels are used to forward packets across the provider's network. This setup allows secure and efficient delivery of data between multiple customer sites, ensuring data is segregated from other customers' traffic.

Discussion

8 comments
Sign in to comment
gndrx78
Jan 12, 2022

Given answer is ok. Reference: https://www.cisco.com/c/en/us/td/docs/routers/asr9000/software/asr9k-r6-5/lxvpn/configuration/guide/b-l3vpn-cg-asr9000-65x/b-l3vpn-cg-asr9000-65x_chapter_010.pdf

HungarianDishOption: B
May 30, 2023

Customer edge simply provides edge connectivity for the customer site. CE is not part of the provider mpls network (LSP). https://www.ciscolive.com/c/dam/r/ciscolive/us/docs/2020/pdf/DGTL-BRKMPL-1100.pdf

6dd4aa0Option: A
Apr 6, 2023

Referring to Figure 18-11 in Page 740 of the CCNP Enterprise Advanced Routing ENARSI Official Guide, it shows that multiple CE routers are connected to a single PE as an ingress router. A VPN tunnel is formed from the ingress routers to a series of P (provider) routers to the egress PE routers before exiting the respective customer's site. Hence, the answer I will take is A

MicMillonOption: B
Jul 6, 2023

MPLS tunnels the routes through the providers core, but doesn't extend that tunnel to the edge device

JeffJeffsonOption: B
Jul 14, 2023

Connectivity is between CE and PE in a provider environment.

MalasxdOption: A
May 10, 2023

I think it's "A". MPLS Layer 3 VPN is not secure. We don't configure any mechanism to make the tunnel secure like a ipsec for exemple. And I've never seen documentation mentioning the word "security" for this type of tunnel.

Malasxd
May 21, 2023

I meant "B"

bk989
Jun 17, 2024

MPLS is not inherently secure with native tunnel protection; it offers traffic segmentation and private channels, so it does offer a form of security, in the context of the question though there are no secure tunnels

MasoudGhorbaniOption: B
Nov 10, 2023

B is the right answer because MPLS traffic is already going through secure ISP routers, not the internet. The main focus in MPLS is on segregating routes.

SeMo0o0o0Option: B
Jul 17, 2024

B is correct