What Does Site-to-site VPN Mean in 200-301?
Also known as: LAN-to-LAN VPN, S2S VPN
Quick Definition
A permanent encrypted tunnel between two routers or firewalls connecting two offices.
Full Definition
A site-to-site VPN connects two fixed locations (offices, data centres) using an encrypted tunnel over the Internet. The tunnel is established between two gateway devices (routers or firewalls) using IPsec. End devices (PCs, servers) have no awareness of the VPN — they simply route traffic to their default gateway, which forwards it through the encrypted tunnel. Site-to-site VPNs replace expensive dedicated WAN links.
Exam Trap — Don't Get Fooled
In a site-to-site VPN, the VPN is terminated at the gateway devices — not at individual hosts. This is different from a remote-access VPN where the tunnel terminates at each user's device.
Related 200-301 Terms
Frequently Asked Questions
What does Site-to-site VPN mean on the 200-301 exam?
A site-to-site VPN connects two fixed locations (offices, data centres) using an encrypted tunnel over the Internet. The tunnel is established between two gateway devices (routers or firewalls) using IPsec. End devices (PCs, servers) have no awareness of the VPN — they simply route traffic to their default gateway, which forwards it through the encrypted tunnel. Site-to-site VPNs replace expensive dedicated WAN links.
How does Site-to-site VPN appear as a trap on the 200-301?
In a site-to-site VPN, the VPN is terminated at the gateway devices — not at individual hosts. This is different from a remote-access VPN where the tunnel terminates at each user's device.
How important is Site-to-site VPN on the 200-301 exam?
Site-to-site VPN falls under the WAN domain of the 200-301 exam. Understanding it in context with related terms like ipsec and vpn is essential for answering scenario-based questions correctly.