IPSEC 3

Question 1

What command is used to apply an IPsec profile to an interface on a Cisco router?

a. crypto map
b. interface ipsec
c. ipsec apply
d. ipsec profile

Answer 1

Answer: d. ipsec profile.

Explanation: The ipsec profile command is used to apply an IPsec profile to an interface.

Question 2

Which protocol and port are commonly used for IKE negotiations in Cisco IPsec implementations?

a. UDP port 500
b. TCP port 80
c. UDP port 4500
d. TCP port 22

Answer 2

Answer: a. UDP port 500.

Explanation: UDP port 500 is commonly used for IKE negotiations in Cisco IPsec.

Question 3

What is the purpose of the crypto map command in a Cisco IPsec configuration?

a. To configure the IPsec transform set
b. To define a pre-shared key for IKE authentication
c. To set up the IPsec tunnel mode
d. To associate an IPsec profile with an interface

Answer 3

Answer: c. To set up the IPsec tunnel mode.

Explanation: The crypto map command is used to configure the IPsec tunnel mode.

Question 4

Which command is used to remove an IPsec profile from an interface on a Cisco router?

a. no ipsec profile
b. remove ipsec profile
c. clear ipsec profile
d. undo ipsec profile

Answer 4

Answer: a. no ipsec profile.

Explanation: The no ipsec profile command is used to remove an IPsec profile from an interface.

Question 5

In a Cisco IPsec configuration, what is the purpose of the crypto isakmp policy command?

a. To define a pre-shared key for IKE authentication
b. To configure the IPsec transform set
c. To set up the IPsec tunnel mode
d. To specify the parameters for IKE Phase 1

Answer 5

Answer: d. To specify the parameters for IKE Phase 1.

Explanation: The crypto isakmp policy command is used to specify the parameters for IKE Phase 1.