Shared Flashcard Set

Details

CCNAS_Chpt8_ImplementingVPN
CCNAS_Chpt8_ImplementingVPN
13
Computer Networking
Undergraduate 3
03/27/2011

Additional Computer Networking Flashcards

 


 

Cards

Term
Remote Access VPN
Definition
Mobile worker to business site
Term
IPSec VPN Tunnel mode
Definition
Encrypts the original header and creates a new header
Term
What is provided by AH when using IPSec?
Definition
Integrity
Authentication
Term
What does ESP provide that AH alone can't?
Definition
Confidentiality
Term
ESP and AH cannot be used simultaneously? T/F?
Definition
False
Term
IKE Phase 1
Definition
Established bidirectional IKE SA
Authenticate peer
Term
IKE Phase II
Definition
Negotiates IPSec policies
When complete, unidirectional IPSec SAs are established for each protocol/algorithm combination
Transform sets are negotiated
Term
What is the purpose of the Crypto ACL?
Definition
To determine what traffic will be tunneled and what will be sent in planin text to the appropriate next hop
Term
The crypto ACLs on both ends of a VPN tunnel should have what relationship?
Definition
They should be mirror images of each other
Term
SSL remote access VPN characteristics
Definition
No client software reuuired
Works for a limited number of applications such as web-browsing and email
Term
IPSec remote access VPN characteristics
Definition
Works for all IP-based applications
Clients must have specialized software
Has a stronger auth method
The stronger security method
Term
What type of VPN assigns host pc a new IP address
Definition
Remote access IPSec
Term
reverse route injection
Definition
Adding a static route entry for a PC when using remote access VPNs
Supporting users have an ad free experience!