7-5

Question 1

PROVIDES A FRAMEWORK FOR AUTHENTICATION AND KEY EXCHANGE

Answer 1

internet security association and key management protocol ISAKMP

Question 2

the first exchange between VPn endpoints establishes the basic __________

Answer 2

security policy

Question 3

once the IKE SA is established, IPSec __________begins

Answer 3

negotiation ( Quick Mode )

Question 4

this mode squeezes the IKE SA negotiation into three packets with all data required for SA passed by the initiator

Answer 4

aggressive mode

Question 5

a new type of firewall uses SSL or ____ to provide VPN access through a web portal

Answer 5

TLS

Question 6

if you find a website with HTTPS then traffic to and from the website is encrypted using ____ or ____. but nowadays it will be TLS.

Answer 6

TLS or SSL

Question 7

just because you logon to a website that has SSL or TLS that doesn’t mean your on a ______

Answer 7

VPN

Question 8

the following is the VPN SSL handshake

Answer 8

client hello
sever hello
client sends pre master secret
client has session key and finishes handshake
server has session key and finishes handshake

Question 9

Cisco VPN solutions include VPN modules for Cisco 1841._____ , _________series intergrated services router

Answer 9

2800, 3800

Question 10

the advantage to using VPNmodules for Series integrated services routers is that they will

Answer 10

work seemlessly with other cisco products

Question 11

cisco vpn solutions can use 3des but ________ is prefered . it can handle packets larger then ______ bytes. it can create ___ new virtual VPN tunnels per second

Answer 11

AES // 500 // 60

Question 12

with a large WAN VPN you might want to invest in the assets to monitor __________

Answer 12

CPN connectionws

Question 13

open-source vpn solution

Answer 13

Openswan

Question 14

_______ supports either remote users logging on via VPN or onsite connection

Answer 14

Openswan