3.4 Given a scenario, use remote access methods.

Question 1

IPSec (Internet Protocol Security)

Answer 1

Security for OSI Layer 3
Confidentiality and integrity/anti-replay
Very standardized
Two core IPSec protocols

Question 2

SSL VPN (Secure Sockets Layer VPN)

Answer 2

Uses common SSL/TLS protocol (tcp/443)
No big VPN clients
Authenticate users
Can be run from a browser or from a light VPN client

Question 3

Site-to-Site VPNs

Answer 3

Encrypt traffic between sites
Through the public Internet
Use existing Internet connection
No additional circuits or costs

Question 4

Host-to-Site VPNs

Answer 4

Also called“remote access VPN”

Requires software on the user device

Question 5

DTLS VPN

Answer 5

Datagram Transport Layer Security
The security of SSL/TLS, the speed of datagrams
Transport using UDP instead of TCP
TCP sometimes gets in the way -Streaming, VoIP packet loss cannot be recovered

Question 6

Remote desktop access

Answer 6

RDP (Microsoft Remote Desktop Protocol)
Share a desktop from a remote location
VNC (Virtual Network Computing) - Remote Frame Buffer (RFB) protocol
Commonly used for technical support - and for scammers

Question 7

Web-based management console

Answer 7

Your browser - The universal client

Manage a device from an encrypted web-based front-end - HTTPS

Question 8

Out-of-band management

Answer 8

The network isn’t available or accessible from the network

separate management interface -serial connection / USB - Modem Dial-in to manage the device

Question 9

Console router / comm server

Answer 9

Out-of-band access for multiple devices

Connect to the console router, then choose where you want to go

Question 10

Transferring files

Answer 10

FTP – File Transfer Protocol
FTPS - File Transfer Protocol Secure (Not SFTP)
SFTP - SSH File Transfer Protocol
TFTP – Trivial File Transfer Protocol -No authentication May be used to download configurations - VoIP phones