Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
9 Cards in this Set
- Front
- Back
VPN: Describe 3 generic types of VPNs
|
1. Intranet - connects all computers at two sites of same org.
2. Extranet - connects all computers at 2 sites of diff. org 3. Access - connects individual user to enterprise network |
|
VPN: Describe 3 encryption algorithms and their bit-lengths
|
1. DES (56)
2. 3DES (168) 3. AES (128 or 256) |
|
VPN: Describe the Diffie-Hellman key exchange options
|
1. DH1 - 768 bit
2. DH2 - 1024 bit 3. DH5 - 1536 bit |
|
VPN: Describe four properties of ESP
|
1. Weak authentication
2. Message Integrity 3. Encryption 4. Anti-replay |
|
VPN: Describe two properties of AH
|
1. Strong authentication
2. Message integrity |
|
VPN: Define SSL VPNs
|
Also called WebVPN; simple, but limited to web-based applications
it has the option of only requiring an SSL-enabled web browser. It is compatible with DMVPNs, Cisco IOS Firewall, IPsec, IPS, Cisco Easy VPN, and NAT. |
|
VPN: which show command displays the encryption algorithm, hash algorithm, authentication method, and Diffie-Hellman group configured, as well as default settings?
|
show crypto isakmp policy
|
|
VPN: List four AH message integrity options and two authentication options
|
Message integrity:
HMAC - MD5 (128 bit shared key) HMAC - SHA1 (160, 256, or 512 bit) Authentication: Pre shared keys RSA digitial signatures |
|
VPN: What is HMAC?
|
Hash-based Message Authentication Code, guarantees message integrity. Not needed if ESP is used.
|