You are a network designer and have been asked to consult with your server operations team to further enhance the security of the network. The operations team provides you with these details about the network:
* A pool of servers is accessed by numerous data centers and remote sites.
* The servers are accessed via a cluster of firewalls.
* The firewalls are configured properly and are not dropping traffic.
* The firewalls occasionally cause asymmetric routing of traffic within the server data center.
Which technology would you recommend to enhance security by limiting traffic that could originate from a hacker compromising a workstation and redirecting flows at the servers?

Refer to the exhibit.

Which two options are two characteristics of the single-tier headend architecture for
DMVPN designs? (Choose two.)

Refer to the exhibit.

A new IPv4 multicast-based video-streaming service is being provisioned. During the design-validation tests, you realize that the link between the two buildings is carrying multicast traffic even when there are no receivers connected to the switch in Building B and despite IGMP snooping being enabled on both Layer 2 switches and IGMPv2 runs on the hosts. Which design change will prevent the multicast traffic from being unnecessarily flooded throughout the campus network?

Refer to the exhibit. You are planning a migration to a dual-stack IPv4/IPv6 campus environment while providing a flexible and scalable design with fault isolation. The design must allow IPv6 devices to tunnel over portions of the campus that are not yet natively IPv6-enabled, including wireless and voice endpoints. Your plan requires an interim approach that allows for a faster introduction of new services without requiring a network wide hot cutover. Which two services block functions meet these requirements? (Choose two.)

Refer to the exhibit.

You are designing an IPv4 unicast Layer 3 VPN load-balancing solution. Which L3VPN feature needs to be configured on the PE routers to support the design requirement?