Which two statements about ADVPN are true? (Choose two.)
Which two statements about ADVPN are true? (Choose two.)
You must configure phase 2 quick mode selectors to 0.0.0.0 0.0.0.0 because it ensures that the VPN can route all traffic. Disabling add-route in the hub is necessary because in an ADVPN setup, dynamic routing protocols handle the route advertisements, not static routes added by IPsec.
study guide p. 336
It's B and D as per study guide p. 336
Refer to Study guide 334. AD-VPN supports EBGP for inter-region routing (dual regions - Dual HUB). So the correct answer is BD
B and D are correct study guide p. 336
Correction of my last answer.
This is a difficult one, This documentation states that members of an ADVPN must use IBGP - https://community.fortinet.com/t5/FortiGate/Technical-Tip-ADVPN-with-BGP-as-the-routing-protocol/ta-p/192437 , and thus must be in the same AS as answer C states. The hub must also be configured with set add-route disable, so D is definitely correct. The Study Guide merely states that you have to check and confirm that phase2 selectors are set to 0.0.0.0/0, which is the default setting as stated here https://docs.fortinet.com/document/fortigate/7.2.4/cli-reference/373620/config-vpn-ipsec-phase2-interface (dst-subnet row in table). I belive if you HAD to set 0.0.0.0/0 the documentation would actually show that in every configuration example of ADVPN. Thus I am going to say that C and D are the correct answers, just to confuse everyone, because I am a bit confused my self.
AD-VPN supports EBGP for inter-region routing (dual regions - Dual HUB). So the correct answer is BD
and also C is correct