Answers to the review questions can be found in Appendix A, "Answers to Review Questions."
| 1: | Name the major VPN types of Cisco Enterprise VPN solutions. |
| 2: | What ports need to be open in the corporate firewall to ensure PPTP functionality? |
| 3: | What is the purpose of control messages in the L2TP protocol? |
| 4: | Define voluntary mode and compulsory mode in PPTP-based VPN. |
| 5: | What is the minimum set of negotiable attributes in IKE SA? |
| 6: | What does SPI stand for in IPSec? |
| 7: | What are the valid authenticating methods in IPSec? |
| 8: | What is the main difference between main mode and aggressive mode? |
| 9: | What is the main difference between transport mode and tunnel mode in IPSec? |
| 10: | Define the unidirectional and bidirectional security associations (SA). What kind of SA is an IKE SA? An IPSec SA? |
| 11: | What is ICV and how is it calculated? |
| 12: | Which ports have to open in the company's firewall to ensure ISAKMP, ESP, and AH operation? |
| 13: | What is the advantage of XAUTH among other authentication methods? What is type 1 authentication in XAUTH? |
| 14: | What is the size of the prime in DH Group 5? |
| 15: | What does PFS stand for? Explain PFS. |