WAN Topologies

Question 1

What are the three basic topology options for a WAN?

Answer 1

Hub and Spoke or Star

Full-Mesh

Partial Mesh

Question 2

What is the benefit of using a star topology?

What is the drawback?

Answer 2

Network simplicity

No redundancy

Question 3

What is the purpose of creating a dual-carrier WAN design?

Answer 3

Increase redundancy and path diversity

Question 4

Provides a pre-established communications path from the customer premises through the provider network to a remote destination

Answer 4

Dedicated communications link

Question 5

Establishes a dedicated virtual connection for voice or data between a sender and a receiver. Two examples of this are PTSN (Public switched telephone network) and ISDN (Integrated services digital network).

Answer 5

Circuit-switched communications link

Question 6

Data is transmitted in labeled frames, cells, or packets and include Frame Relay, ATM (Asynchronous Transfer Mode) and X.25.

Answer 6

Packet-switched communications links

Question 7

These links go through broadband services such as DSL, cable modem, and broadband wireless. They are combine with VPN technologies to provide privacy.

Answer 7

Internet WAN connection links

Question 8

Gives enterprises a way to create end-to-end circuits across any type of transport medium using any available WAN technology

Answer 8

MPLS (Multiprotocol Label Switching)

Question 9

What type of MPLS VPN is appropriate for customers that manage their own routing information?

Answer 9

Layer 2 MPLS VPN

Question 10

What type of MPLS VPN is appropriate for customers that prefer to outsource their routing to a service provider?

Answer 10

Layer 3 MPLS VPN

Question 11

These devices are responsible for encapsulating and encrypting traffic

Answer 11

VPN device

Question 12

What are the two available options for VPN encryption?

Answer 12

IP Sec SSL

Question 13

What are the two types of VPN?

Answer 13

Site to site

Remote access

Question 14

A framework of open security standards that does not support broadcast or IP multicast.

Answer 14

IP Sec

Question 15

What addition to IP Sec can enable routing and multicast?

Answer 15

GRE

Question 16

What Cisco proprietary site-to-site VPN option allows a simple hub and spoke configuration and zero touch configuration for new hosts?

Answer 16

DMVPN (Dynamic Multipoint Virtual Private Network)

Question 17

What mode of IPsec configuration simplifies a VPN configuration?

Answer 17

VTI (Virtual Tunnel Interface)

Question 18

What are the two types of VTI?

Answer 18

static and dynamic

Question 19

Allows IP Sec to be immediately triggered to create point-to-point GRE tunnels without any IP Sec peering configuration.

Answer 19

DMVPN

Question 20

Connects the CPE to the nearest exchange of the service provider.

Answer 20

Local loop

Question 21

Takes digital data from the communications technology that’s used on a LAN and converts it into a frame thats appropriate for a WAN and vise versa

Answer 21

CSU/DSU

Question 22

Router that resides in the middle or backbone of a WAN rather than its periphery

Answer 22

Core router

Question 23

Device that interprets digital and analog signals enabling data to be transmitted over voice-grade telephone lines

Answer 23

Modem

Question 24

Used where a fiber-optic link terminates in order to convert optical signals into electrical signals and vice versa

Answer 24

Optical fiber converters

Question 25

Device that is used to connect DTE to a digital circuit, such as a T1 carrier line. A device is considered DTE if it is either a source or destination for digital data. Examples of DTE include PCs, servers, and routers.

Answer 25

CSU/DSU

Question 26

What are two types of Layer 2 MPLS VPN technologies?

Answer 26

VPLS

VPWS

Question 27

What protocol provides confidentiality, data integrity, authentication, and antireplay protection

Answer 27

IPsec

Question 28

What service ensures that transmitted has not been changed or altered in any way?

Answer 28

data integrity

Question 29

What are the main components of MPLS?

Answer 29

Control plane Data Plane

Question 30

A protocol that is typically used when configuring a virtual private network (VPN)

Answer 30

L2TP (Layer 2 Tunneling Protocol)

Question 31

VPN technology that leverages the strengths of IP Sec, GRE, and Next-Hop Resolution Protocol (NHRP) to simplify the implementation of highly scalable, secure networks.

Answer 31

DMVPN

Question 32

Which of the following topology terms most closely describe the topology created by a Metro Ethernet Tree (E-Tree) service? (Choose two answers.)

Partial Mesh

Full Mesh

Hub and Spoke

Point-to-point

Answer 32

Partial Mesh

Hub and spoke

A Metro Ethernet E-Tree service uses a rooted point-to-multipoint Ethernet Virtual Connection (EVC), which means that one site connected to the service (the root) can communicate directly with each of the remote (leaf) sites. However, the leaf sites cannot send frames directly to each other; they can only send frames to the root site.

Question 33

Which component of VPN technology ensures that data is unaltered between the sender and recipient?

A. encryption
B. authentication
C. key exchange
D. data integrity

Answer 33

D. data integrity

Question 34

Which device might be installed at a branch office to enable and manage an IPsec site-to-site VPN?

A. Cisco IOS IPsec/SSL VPN Client
B. Cisco Adaptive Security Appliance
C. Cisco VPN Client
D. ISDN terminal adapter

Answer 34

B. Cisco Adaptive Security Appliance

Question 35

Which two data integrity algorithms are commonly used in VPN solutions? (Choose two.)

A. DH1
B. DH2
C. HMAC-MD5
D. HMAC-SHA-1
E. RSA

Answer 35

C. HMAC-MD5
D. HMAC-SHA-1

Question 36

What are three reasons that an organization with multiple branch offices and roaming users might implement a Cisco VPN solution instead of point-to-point WAN links? (Choose three.)

A. reduced cost
B. better throughput
C. broadband incompatibility
D. increased security
E. scalability
F. reduced latency

Answer 36

A. reduced cost

D. increased security

E. scalability

Question 37

Which protocol is an open standard protocol framework that is commonly used in VPNs, to provide secure end-to-end communications?

A. RSA
B. L2TP
C. IPsec
D. PPTP

Answer 37

C. IPsec

Question 38

What is the advantage of using a multipoint interface instead of point-to-point subinterfaces when configuring a Frame Relay hub in a hub-and-spoke topology?

A. It avoids split-horizon issues with distance vector routing protocols.
B. IP addresses can be conserved if VLSM is not being used for subnetting.
C. A multipoint interface offers greater security compared to point-to-point subinterface configurations.
D. The multiple IP network addresses required for a multipoint interface provide greater addressing flexibility over point-to-point configurations.

Answer 38

B. IP addresses can be conserved if VLSM is not being used for subnetting.

Question 39

What two encryption algorithms are used in IPSec VPNs?

A. DH

B. PSK

C. IKE

D. AES

E. 3DES

Answer 39

D. AES

E. 3DES

Question 40

Which three statements describe the building blocks that make up the IPSec protocol framework? (Choose three)

A. IPSec uses encryption algorithms and keys to provide secure transfer of data

B. IPSec uses Diffie-Hellman algorithms to encrypt data that is transfered through the VPN

C. IPSec uses 3DES algorithms to provide the highest level of security for data that is transfered through a VPN.

D. IPSec uses secret key cryptography to encrypt messages that are sent through a VPN

E. IPSec uses Diffie-Hellman as a hash algorithm to ensure integrity of data that is transmitted through a VPN

F. IPSec uses ESP to provide confidential transfer of data by encrypting IP packets.

Answer 40

A. IPSec uses encryption algorithms and keys to provide secure transfer of data

D. IPSec uses secret key cryptography to encrypt messages that are sent through a VPN

F. IPSec uses ESP to provide confidential transfer of data by encrypting IP packets.

Question 41

What is an IPsec protocol that provides data confidentiality and authentication for IP packets?

Answer 41

ESP