Which parameter is initially used to elect the primary key server from a group of key servers?

A. code version

B. highest IP address

C. highest-priority value

D. lowest IP address

Refer to the exhibit.

An engineer has configured a spoke to connect to a FlexVPN hub. The tunnel is up, but pings fail when the engineer attempts to reach host 192.168.200.10 behind the spoke, and traffic is sourced from host 192.168.100.3, which is behind the FlexVPN server. Based on packet captures, the engineer discovers that host 192.168.200.10 receives the icmp echo and sends an icmp reply that makes it to the inside interface of the spoke. Based on the output in the exhibit captured on the spoke by the engineer, which action resolves this issue?

A. Add the aaa authorization group cert list default default command to the spoke ikev2 profile.

B. Add the route set remote ipv4 192.168.200.0 255.255.255.0 command to the hub authorization policy.

C. Add the aaa authorization group cert list default default command to the hub ikev2 profile.

D. Add the route set remote ipv4 192.168.100.0 255.255.255.0 command to the spoke authorization policy.

A network administrator deployed IKEv2 Cisco AnyConnect on a Cisco ASA. The current configuration tunnels all traffic through the VPN. Users report poor performance with cloud-based applications, but no issues have been reported about connections to on-premises servers. Packet analysis on Cisco Webex traffic shows very few duplicate ACKs, high RTT, and no IP fragments. Which action improves Webex performance for VPN users?

A. Configure QoS on the outside interface of the ASA.

B. Configure Cisco AnyConnect to use DTLS.

C. Configure a dynamic split tunnel exclusion.

D. Reduce the Cisco AnyConnect tunnel MTU.

The corporate network security policy requires that all internet and network traffic must be tunneled to the corporate office. Remote workers have been provided with printers to use locally at home while they are remotely connected to the corporate network. Which two steps must be executed to allow printing to the local printers? (Choose two.)

A. Configure the split-tunnel-policy on the Cisco ASA to tunnelall.

B. Check the Allow Local LAN access checkbox in the Cisco AnyConnect client.

C. Add a persistent static route in the client OS for the local LAN network.

D. Configure the split-tunnel-policy on the Cisco ASA to excludespecified.

E. Configure the split-tunnel-policy on the Cisco ASA to tunnelspecified.

Refer to the exhibit.

Which type of VPN tunnel is configured?

A. Multipoint GRE

B. DMVPN

C. FlexVPN

D. GRE over IPsec