1
Q
vpns
A
- securely extend private networks across public networks
- enables users to connect to private resources as if they were locally connected
2
Q
types of vpns
A
- remote access vpn
- site to site vpn
3
Q
remote access vpn
A
-securely connects users to internal resources
4
Q
site to site vpn
A
- tunnel between two devices
- transparently connects remote locations over the internet as if they were local
5
Q
vpn topologies
A
- hub and spoke
- partial mesh
- full mesh
6
Q
hairpining
A
- routing internet and lan traffic through a vpn
- increased traffic volume
7
Q
split tunnel vpn
A
- corporate resources available through vpn
- internet traffic is routed directly to the internet
- reduced vpn traffic
8
Q
internet protocol security (ipsec)
A
- suite of protocols to manage encrypted communication tunnels
- provides authentication, confidentiality, and integrity
9
Q
ipsec encryption algorithms
A
- DES
- 3DES
- AES
- to encrypt ip packets
10
Q
ipsec hashing algorithm
A
- MD5
- SHA
- to ensure data integrity
11
Q
ipsec authentication algorithms
A
- RSA
- ECDSA
- pre shared key
- to verify the information sender
12
Q
ipsec components
A
- authentication header (AH)
- encapsulating security payload (ESP)
- security associations (SA)
13
Q
internet key exchange (ike)
A
- used to set up a SA in ipsec
- creates the vpn tunnels
- manages the encryption keys
14
Q
ipsec modes of operation
A
- tunnel mode
- transport mode
15
Q
ipsec tunnel mode
A
- default
- used site to site or for remote access
- ip packet is encrypted, authenticated, and encapsulated into a new ip header
16
Q
ipsec transport mode
A
- used for end to end communications
- protects data sent between hosts on the same network
- only the payload of the ip packet is encrypted and authenticated
17
Q
ipsec disadvantages
A
- complicated
- only supports unicast traffic
firewalls
flashcards
Decks in class (8)
# Cards
