Q1 A network administrator is planning a VPN tunnel. Why would the engineer select main mode for IKE Phase 1? Options: A) It is the industry standard. B) It requires less configuration. C) It is more secure. D) It is quicker.

Answer: C) It is more secure.

Q2 What are the two types of VPN connections? (Choose two.) Options: A) Frame Relay B) Leased line C) Remote access D) Site-to-site E) PPPoE

Answer: C) Remote access; D) Site-to-site

Q3 Which IPsec framework protocol provides data integrity and data authentication, but does not provide data confidentiality? Options: A) DH B) AH C) IP protocol 50 D) ESP

Answer: B) AH

Q4 What can be used as a VPN gateway when setting up a site-to-site VPN? Options: A) Cisco router B) Cisco Catalyst switch C) Cisco Unified Communications Manager D) Cisco AnyConnect

Answer: A) Cisco router

Q5 Which two types of VPNs are examples of enterprise-managed remote access VPNs? (Choose two.) Options: A) IPsec VPN B) Client-based IPsec VPN C) Clientless SSL VPN D) GRE over IPsec VPN E) IPsec Virtual Tunnel Interface VPN

Answer: B) Client-based IPsec VPN C) Clientless SSL VPN

Q6 Which type of VPN may require the Cisco VPN Client software? Options: A) Remote access VPN B) MPLS VPN C) SSL VPN D) Site-to-site VPN

Answer: A) Remote access VPN

Q7 Which protocol provides authentication, integrity, and confidentiality services and is a type of VPN? Options: A) IPsec B) ESP C) MD5 D) AES

Answer: A) IPsec

Q8 Which IPsec security function provides assurance that the data received via a VPN has not been modified in transit? Options: A) Confidentiality B) Secure key exchange C) Authentication D) Integrity

Answer: D) Integrity

Q9 Which statement describes a feature of site-to-site VPNs? Options: A) Individual hosts can enable and disable the VPN connection. B) The VPN connection is not statically defined. C) Internal hosts send normal, unencapsulated packets. D) VPN client software is installed on each host.

Answer: C) Internal hosts send normal, unencapsulated packets.

Q10 What is a type of VPN that is generally transparent to the end user? Options: A) Remote access B) Public C) Site-to-site D) Private

Answer: C) Site-to-site

Q11 Which statement describes a VPN? Options: A) VPNs use open source virtualization software to create the tunnel through the Internet. B) VPNs use logical connections to create public networks through the Internet. C) VPNs use virtual connections to create a private network through a public network. D) VPNs use dedicated physical connections to transfer data between remote users.

Answer: C) VPNs use virtual connections to create a private network through a public network.

Q12 What is the purpose of IKE? Options: A) Key transmission B) VPN key management C) Security appliance configuration D) Firewall port management

Answer: B) VPN key management