3.4

Question 1

Whats IPSec?

Answer 1

(Internet Protocol Security) It provides security for OSI layer 3 with authentication and encryption for every packet. It’s very standardized and offers packet signing.

Question 2

What are the two protocols of IPSec?

Answer 2

1. AH (Authentication Header)

2. ESP (Encapsulation Security Payload)

Question 3

Whats a site-to-site?

Answer 3

It’s a VPN encrypted traffic between sites which uses existing Internet connection(no extra circuit or cost.

Question 4

Whats SSL/TLS?

Answer 4

(Secure Sockets Layer) Its another kind of VPN that uses common SSL/TLS protocol(tcp/443). It has no big VPN clients and it authenticates users with a simple username and password which can be run from a browser or from a VPN client.

Question 5

Whats client-to-Site VPN?

Answer 5

it’s also called “remote access VPN” and requires specific software on the user device.

Question 6

Whats DTLS?

Answer 6

(Datagram Transport Layer Security) It’s a udp based VPN that doesnt have the tcp issues and mostly is used for streaming and VoIP. It doesnt have re-transmission of lost data and if a packet is lost, it’s too late to recover.

Question 7

Whats RDP?

Answer 7

it’s the Microsoft Remote Desktop Protocol.

Question 8

Whats VNC?

Answer 8

(Virtual Network Computing) It’s another remote desktop technology that uses RFB(Remote Frame Buffer) protocol which works on many operating systems and many of them are open source and it’s mostly used for technical support (and for scammer)

Question 9

Whats the difference between SSH and Telnet?

Answer 9

(secure Shell) It’s another remote access with a console screen which uses encrypted console communication(tcp/22) and looks and acts the same as Telnet(tcp/23). Telnet is in clear and has no security.

Question 10

Whats HTTPS?

Answer 10

It’s a Web-based management console that uses our web browser. By using HTTPS we can ensure that there is an encrypted connection between our browser and this remote device.

Question 11

Whats FTP?

Answer 11

(File Transfer Protocol) It’s used for file transfer and authenticates with a username and password. It offers Full-functionality(list, add, delete, etc) but no encryption.

Question 12

Whats FTPS?

Answer 12

(File Transfer Protocol Secure) It’s FTP over SSL and is also called FTP-SSL. Its not FTPS.

Question 13

Whats SFTP?

Answer 13

(SSH File Transfer Protocol) Its also full featured.

Question 14

Whats TFTP?

Answer 14

(Trivial File Transfer Protocol) A very simple file transfer application just to read and write files. It has no authentication and mostly used to download configurations for VoIP phones.

Question 15

Whats out-of-band management?

Answer 15

It’s a management done on devices where network isn’t available. (Most devices have a separate management interface: Serial or USP).

Question 16

Whats a modem used for in an Out-of band management?

Answer 16

When a device is not connected to a network or no network is available, we connect a modem to the device to dial-in to manage the device.

Question 17

Whats a console router?

Answer 17

(also called communication server) It’s an out-of-band access for multiple devices and we can connect to the console router and then choose where we want to go.