Answers to the review questions can be found in Appendix A, "Answers to Review Questions."
| 1: | Why is the AH protocol considered less secure than ESP? |
| 2: | Which part of the ESP packet is not protected? |
| 3: | What is a one-to-many NAT or PAT? |
| 4: | What is split tunneling? |
| 5: | Name the three main types of firewalls. |
| 6: | Describe how to calculate the session load on the VPN concentrator. |
| 7: | What does VRRP stand for? |
| 8: | What is Reverse Route Injection? |
| 9: | What is the Group Lock configuration in a VPN concentrator? |
| 10: | Name the two mandatory settings on your VPN client. |
| 11: | Define the network extension mode for the VPN 3002 Client. |
| 12: | For the Router-EzVPN, type the IOS command to start the XAUTH login sentence. |
| 13: | When typing IOS command show crypto ipsec client ezvpn, how do you find out if IPSec is up and running? |
| 14: | In PIX 501, how do you check if you are running Client mode, or Network Extension mode? |