Q1
A network administrator is planning a VPN tunnel. Why would the engineer select main mode for IKE Phase 1?
Options:
A) It is the industry standard.
B) It requires less configuration.
C) It is more secure.
D) It is quicker.
Answer: C) It is more secure.
1/12
| Term | Definition |
|---|---|
| Q1 A network administrator is planning a VPN tunnel. Why would the engineer select main mode for IKE Phase 1? Options: A) It is the industry standard. B) It requires less configuration. C) It is more secure. D) It is quicker. | Answer: C) It is more secure. |
| Q2 What are the two types of VPN connections? (Choose two.) Options: A) Frame Relay B) Leased line C) Remote access D) Site-to-site E) PPPoE | Answer: C) Remote access; D) Site-to-site |
| Q3 Which IPsec framework protocol provides data integrity and data authentication, but does not provide data confidentiality? Options: A) DH B) AH C) IP protocol 50 D) ESP | Answer: B) AH |
| Q4 What can be used as a VPN gateway when setting up a site-to-site VPN? Options: A) Cisco router B) Cisco Catalyst switch C) Cisco Unified Communications Manager D) Cisco AnyConnect | Answer: A) Cisco router |
| Q5 Which two types of VPNs are examples of enterprise-managed remote access VPNs? (Choose two.) Options: A) IPsec VPN B) Client-based IPsec VPN C) Clientless SSL VPN D) GRE over IPsec VPN E) IPsec Virtual Tunnel Interface VPN | Answer: B) Client-based IPsec VPN C) Clientless SSL VPN |
| Q6 Which type of VPN may require the Cisco VPN Client software? Options: A) Remote access VPN B) MPLS VPN C) SSL VPN D) Site-to-site VPN | Answer: A) Remote access VPN |
| Q7 Which protocol provides authentication, integrity, and confidentiality services and is a type of VPN? Options: A) IPsec B) ESP C) MD5 D) AES | Answer: A) IPsec |
| Q8 Which IPsec security function provides assurance that the data received via a VPN has not been modified in transit? Options: A) Confidentiality B) Secure key exchange C) Authentication D) Integrity | Answer: D) Integrity |
| Q9 Which statement describes a feature of site-to-site VPNs? Options: A) Individual hosts can enable and disable the VPN connection. B) The VPN connection is not statically defined. C) Internal hosts send normal, unencapsulated packets. D) VPN client software is installed on each host. | Answer: C) Internal hosts send normal, unencapsulated packets. |
| Q10 What is a type of VPN that is generally transparent to the end user? Options: A) Remote access B) Public C) Site-to-site D) Private | Answer: C) Site-to-site |
| Q11 Which statement describes a VPN? Options: A) VPNs use open source virtualization software to create the tunnel through the Internet. B) VPNs use logical connections to create public networks through the Internet. C) VPNs use virtual connections to create a private network through a public network. D) VPNs use dedicated physical connections to transfer data between remote users. | Answer: C) VPNs use virtual connections to create a private network through a public network. |
| Q12 What is the purpose of IKE? Options: A) Key transmission B) VPN key management C) Security appliance configuration D) Firewall port management | Answer: B) VPN key management |