A network engineer is deploying a Cisco SD-WAN solution for a global enterprise with multiple regional hubs. The engineer wants to ensure that traffic from branch offices to the internet is always forwarded directly from the branch, even if the branch has a primary MPLS link and a backup broadband link. The engineer configures the vSmart policy to direct internet-bound traffic to use the local exit at the branch. However, after deployment, the engineer notices that some internet traffic is still being sent to the regional hub before reaching the internet. What is the most likely cause of this behavior?
Trap 1: The branch router does not have a default route in its routing…
Incorrect because a missing default route would cause traffic to be dropped, not forwarded to the hub.
Trap 2: The engineer used a localized data policy instead of a centralized…
Incorrect because a localized policy can also enforce local exit if applied correctly, but the root cause is the VPN mismatch.
Trap 3: The OMP route redistribution is not enabled on the branch router.
Incorrect because OMP is for overlay routes, not for directing internet traffic.
- A
The engineer configured the data policy under VPN 0 instead of the service VPN (e.g., VPN 10).
Correct because VPN 0 is for transport, and internet traffic from the service side must be matched in the service VPN policy to enforce local exit.
- B
The branch router does not have a default route in its routing table for the service VPN.
Why wrong: Incorrect because a missing default route would cause traffic to be dropped, not forwarded to the hub.
- C
The engineer used a localized data policy instead of a centralized data policy.
Why wrong: Incorrect because a localized policy can also enforce local exit if applied correctly, but the root cause is the VPN mismatch.
- D
The OMP route redistribution is not enabled on the branch router.
Why wrong: Incorrect because OMP is for overlay routes, not for directing internet traffic.