IPSEC VPN

Question 1

What are the 5 steps of IPSEC VPN

Answer 1

Identify interesting traffic
IKE phase I
IKE phase II
IPSEC Tunnel
Tunnel termination

Question 2

What is IKE phase I

Answer 2

Peered networks agreeing to a set of rules, exchanging keys to validate authorized traffic

Question 3

What is IKE phase II

Answer 3

Uses IKE phase I tunnel to establishes IPSEC security associations

Question 4

What is the IPSEC Tunnel?

Answer 4

Activation of the IPSEC tunnel, and allows the traffic to traverse the secure link

Question 5

What is the identification of interesting traffic?

Answer 5

A router identifying traffic that matches a set of rules in a data packet that indicates it is destined for a peered network.

Question 6

What is tunnel termination?

Answer 6

After the traffic that initiated the VPN tunnel traverses the network and no other interesting traffic is identified for that tunnel session is identified, the tunnel session ends and all associated keys and authentication are discarded.

Question 7

What is a customer gateway?

Answer 7

The customer side of a VPN connection with AWS

Question 8

What is an AWS VPN-Endpoint?

Answer 8

An AWS side of a VPN connection with AWS

Question 9

How does AWS give customers the option to create resilient VPN connections with AWS?

Answer 9

By providing multiple VPN-Endpoints that each customer gateway can connect to.

Question 10

To create a resilient VPN connection, what must be done?

Answer 10

at least 2 customer gateways connecting to at least two VPN-Endpoints.