Implementing SSL VPNs Using Cisco ASA

Question 1

Which SSL solution is most appropriate for a user who is at a borrowed computer and needs access to a single server at the central office?

Answer 1

SSL clientless VPN

Question 2

What solution assigns a virtual IP address to the remote user to use for traffic sent over the SSL VPN to the server?

Answer 2

Cisco Anyconnect

Question 3

What is the immediate cost savings when implementing SSL VPNs?

Answer 3

Easy deployment

Question 4

How does an SSL client send the desired shared secret to the server?

Answer 4

Encrypts it with the

Question 5

Name three parts of configuring the clientless SSL VPN on the ASA?

Answer 5

Launching the wizard, Specifying the URL, Configuring bookmarks

Question 6

What may be a potential problem when enabling SSL VPNs on an interface on the ASA?

Answer 6

ASDM must be used with a different URL

Question 7

Name two steps that are configured when setting up Cisco Anyconnect on the ASA that would not be configured for clientless SSL VPN?

Answer 7

NAT exemption, Pool of addresses

Question 8

Where does the ASA keep the copy of the Anyconnect that may be deployed down to the client?

Answer 8

On flash

Question 9

What are some common issues that users experience when they cannot send or receive IP traffic over an SSL VPN tunnel?

Answer 9

Routing issues behind the ASA, Access control lists blocking traffic, Network Address Translation not being bypassed for the VPN traffic