Configure virtual private network (VPN) and routing

Question 1

RAS

Answer 1

Remote Access Server

A RAS enables users to connect remotely to a network using various protocols and connection types. By connecting to the RAS over the Internet, users can connect to their organization’s network so that they can access data files, read e-mail, and access other applications just as if they were sitting at work.

Question 2

RRAS

Answer 2

Routing and Remote Access

RAS that also can manage routing.

Question 3

5 options for configuring a RRAS

Answer 3

Remote access (dial-up or VPN): Sets up the server to accept incoming remote access connections (dial-up or VPN).
• Network address translation (NAT): Sets up the server to provide NAT services to clients on the private network that need to access the Internet.
• Virtual private network (VPN) access and NAT: Sets up the server to support incoming VPN connections and to provide NAT services.
• Secure connection between two private networks: Sets up a demand-dial or persistent connection between two private networks.
• Custom configuration: Enables you to choose individual services, including NAT, LAN routing, and VPN access (see Figure 10-4).

Question 4

Add-RemoteAccessLoadBalancerNode

Answer 4

Adds a server to the load balancing cluster.

Question 5

Add-VpnS2SInterface

Answer 5

Creates a site-to-site interface with the specified parameters.

Question 6

Clear-VpnS2SInterfaceStatistics

Answer 6

Clears statistics for a site-to-site interface.

Question 7

Connect-VpnS2SInterface

Answer 7

Connects a site-to-site interface that is currently not connected.

Question 8

Disconnect-VpnS2SInterface

Answer 8

Disconnects a site-to-site interface that is currently connecte

Question 9

Disconnect-VpnUser

Answer 9

Disconnects a VPN connection originated by a specific user or originating
from a specific client computer.

Question 10

Get-RemoteAccess

Answer 10

Displays the configuration of DirectAccess and VPN (both Remote Access VPN
and site-to-site VPN

Question 11

Get-RemoteAccessConnectionStatistics

Answer 11

Displays the statistics of real-time, currently active
DirectAccess and VPN connections and the statistics of DirectAccess and VPN historical connections for a
specified time duration

Question 12

Get-RemoteAccessConnectionStatisticsSummary

Answer 12

Displays the summary statistics of
real-time, currently active DirectAccess and VPN connections and the summary statistics of DirectAccess
and VPN historical connections for a specified time duration.

Question 13

Get-RemoteAccessHealth

Answer 13

Obtains the current health of a Remote Access deployment.

Question 14

Get-RemoteAccessLoadBalancer

Answer 14

Displays load balanced cluster settings

Question 15

Get-RemoteAccessUserActivity

Answer 15

Displays the resources accessed over the active
DirectAccess and VPN connections and the resources accessed over historical DirectAccess and VPN
connections.

Question 16

Get-VpnAuthProtocol

Answer 16

Retrieves authentication parameters configured on a VPN server.

Question 17

Get-VpnS2SInterface

Answer 17

Retrieves configuration details for a site-to-site interface.

Question 18

Get-VpnS2SInterfaceStatistics

Answer 18

Retrieves statistics of a site-to-site interface.

Question 19

Get-VpnServerIPsecConfiguration

Answer 19

Gets IPsec parameters configured on the VPN server.

Question 20

Install-RemoteAccess

Answer 20

Performs prerequisite checks for DirectAccess to ensure that it can be
installed, installs DirectAcccess for remote access (includes management of remote clients) or for
management of remote clients only, and installs VPN (both Remote Access VPN and site-to-site VPN).

Question 21

Remove-RemoteAccessLoadBalancerNode

Answer 21

Removes a server from the network load balancing

(NLB) cluster

Question 22

Remove-VpnIPAddressRange

Answer 22

emoves an existing IPv4 address range from the pool for IP address assignment

Question 23

• Remove-VpnS2SInterface

Answer 23

Removes a specified site-to-site interface.

Question 24

Set-RemoteAccess

Answer 24

Modifies the configuration that is common to both DirectAccess and VPN, such
as SSL certificate, Internal interface, and Internet interface.

Question 25

Set-RemoteAccessLoadBalancer

Answer 25

Configures load balancing on the Remote Access server or the

cluster server.

Question 26

Set-VpnAuthProtocol

Answer 26

Sets the authentication method for incoming site-to-site VPN interfaces on
a Routing and Remote Access server.

Question 27

Set-VpnAuthType

Answer 27

Sets the authentication type to be used for connecting to a VPN.

Question 28

Set-VpnIPAddressAssignment

Answer 28

Configures the IPv4 address assignment method or the IPv6

prefix for IPv6 address assignment.

Question 29

Set-VpnS2SInterface

Answer 29

Modifies parameters for a site-to-site interface.

Question 30

Set-VpnServerIPsecConfiguration

Answer 30

Sets the IPsec parameters for a site-to-site server.

Question 31

Uninstall-RemoteAccess

Answer 31

Uninstalls DirectAccess and VPN, both remote access VPN and

site-to-site VPN.

Question 32

Add-VpnIPAddressRange

Answer 32

Adds a new IPv4 address range from which IPv4 addresses can be
assigned to VPN clients

Question 33

VPN

Answer 33

Virtual private networks (VPNs) link two computers or network devices through a wide- area network (WAN) such as the Internet. Because the Internet is a public network and is considered insecure, the data sent between the two computers or devices is encapsulated and encrypted.

Question 34

VPN connections provide

Answer 34

Encapsulation
Authentication
Data Encryption
Data Integrity

Question 35

VPN provides: Authentication

Answer 35

Proves the identity of the user or computer that tries to connection.

Question 36

VPN provides: Encapsulation

Answer 36

Private data is encapsulated or placed in a packet with a header containing routing information that allows the data to traverse the transit network such as the Internet.

Question 37

VPN provides: Data integrity

Answer 37

• Data integrity: Verifies that the data sent over the VPN connection has not been modified in transit. This is usually done with a cryptographic checksum that is based on an encryption key that is known only to the sender and receiver.

Question 38

types of security protocols used with MS RAS/VPN

Answer 38

PPTP (Point-to-Point Tunneling Protocol)
L2TP (Layer 2 Tunneling Protocol)
IKEv2 (Internet Key Exchange v2)
SSTP (Secure Socket Tunneling Protocol)