Which of the following is NOT a task that a VPN concentrator is responsible for? Show
A VPN concentrator shuts down established connections when malicious traffic occurs. A VPN concentrator manages encryption for VPN transmissions. A VPN concentrator authenticates VPN clients. A VPN concentrator establishes tunnels for VPN connections. A VPN concentrator shuts down established connections when malicious traffic occurs. What cloud service model involves providing applications through an online user interface, providing for compatibility with a multitude of different operating systems and devices? PaaS SaaS What term is used to describe a space that is rented at a data center facility by a service provider? service location (SL) point of presence (PoP) Which type of cloud service model involves hardware services that are provided virtually, including network infrastructure devices such as virtual servers? PaaS IaaS Which of the following statements regarding the Point-to-Point protocol (PPP) is NOT accurate? PPP can negotiate and establish a connection between two endpoints. PPP can utilize an authentication protocol, such as MS-CHAPv2 or EAP to authenticate a client. PPP can support several Network layer protocols, such as IP, that might use the connection. PPP can support strong encryption, such as AH or ESP. PPP can support strong encryption, such as AH or ESP. Which statement regarding the IKEv2 tunneling protocol is accurate? IKEv2 is an older, Layer 2 protocol developed by Microsoft that encapsulates VPN data frames. IKEv2 offers fast throughput and good stability when moving between wireless hotspots. IKEv2 is an open-source VPN protocol that utilizes OpenSSL for encryption. IKEv2 is based on technology developed by Cisco and standardized by the IETF. IKEv2 offers fast throughput and good stability when moving between wireless hotspots. The PPP headers and trailers used to create a PPP frame that encapsulates Network layer packets vary between 8 and 10 bytes in size due to what field? priority FCS The combination of a public key and a private key are known by which of the following terms? key tie key pair What type of scenario would be best served by using a Platform as a Service (PaaS) cloud model? An organization wishes to gain access to applications through an online user interface, while maintaining compatibility across operating systems. A small organization needs to have high availability for their web server. A group of developers needs access to multiple operating systems and the runtime libraries that the OS provides. An organization needs to have a hosted virtual network infrastructure for their services, which are run on virtual machines. A group of developers needs access to multiple operating systems and the runtime libraries that the OS provides. What is NOT a potential disadvantage of utilizing virtualization? Licensing costs can be high due to every instance of commercial software requiring a separate license. Virtualization software increases the complexity of backups, making creation of usable backups difficult. Increased complexity and administrative burden can result from the use of virtual machines. Multiple virtual machines contending for finite resources can compromise performance. Virtualization software increases the complexity of backups, making creation of usable backups difficult. VMware Player and Linux KVM are both examples of what type of hypervisor? Type 2 hypervisor Type 2 hypervisor By default, what network connection type is selected when creating a VM in VMware, VirtualBox, or KVM? bridged
mode NAT mode When using a site-to-site VPN, what type of device sits at the edge of the LAN and establishes the connection between sites? VPN gateway VPN gateway Amazon and Rackspace both utilize what virtualization software below to create their cloud environments? VMware vSphere Citrix Xen What security encryption protocol requires regular re-establishment of a connection and can be used with any type of TCP/IP transmission? IPsec IPsec At what layer of the OSI model does the IPsec encryption protocol operate? Transport layer Network layer In a software-defined network, what is responsible for controlling the flow of data? SDN controller SDN controller What statement regarding the SSH (Secure Shell) collection of protocols is accurate? SSH does not protect against IP spoofing. SSH provides a graphical view of the remote computer. SSH does not protect against DNS spoofing. SSH supports port forwarding. SSH supports port forwarding Which of the following virtualization products is an example of a bare-metal hypervisor? VMware Player Citrix XenServer To generate a public and private key for use with SSH, what command line utility should you use? gpg --ssh ssh-keygen When is it appropriate to utilize the NAT network connection type? Whenever the VM does not need to be accessed at a known address by other network nodes. Only if the VM is intended for VM-to-host communications. Only if the VM does not need to communicate with the host PC. Only when the VM requires an IP address on the physical LAN. Whenever the VM does not need to be accessed at a known address by other network nodes. When using public and private keys to connect to an SSH server from a Linux device, where must your public key be placed before you can connect? In the /var/run/ssh/public folder. In an authorization file under your home directory on your computer. In an authorization file on the host where the SSH server is. In the /etc/ssh/keys folder. In an authorization file on the host where the SSH server is. Which file transfer protocol has no authentication or security for transferring files, uses UDP, and requires very little memory to use? Secure FTP (SFTP) Trivial FTP (TFTP) The use of certificate authorities to associate public keys with certain users is known by what term? symmetric identification public-key infrastructure Regarding VNC (Virtual Network Computing or Virtual Network Connection), what statement is accurate? VNC is open source, allowing companies to develop their own software based on VNC. VNC is faster than Remote Desktop, and requires less network bandwidth. VNC uses the Remote Desktop Protocol (RDP). VNC is a standard developed by Microsoft and used by Windows Remote Desktop. VNC is open source, allowing companies to develop their own software based on VNC. What open-source VPN protocol utilizes OpenSSL for encryption and has the ability to possibly cross firewalls where IPsec might be blocked? Point-to-Point Tunneling Protocol (PPTP) OpenVPN Layer 2 Tunneling Protocol (L2TP) Generic Routing Encapsulation (GRE) OpenVPN Why is the telnet utility a poor choice for remote access to a device? It does not allow for control of a computer remotely. It provides poor authentication and no encryption. It cannot be used over a public WAN connection. It provides no mechanism for authentication. It provides poor authentication and no encryption. A vSwitch (virtual switch) or bridge is a logically defined device that operates at what layer of the OSI model? Layer 4 Layer 2 Which statement regarding the use of a bridged mode vNIC is accurate? The vNIC will obtain its own IP address on the physical LAN. The vNIC will only be able to communicate across the bridge to the host PC. The vNIC will utilize the host PC's IP address. The vNIC will be assigned a NAT-ed IP address. The vNIC will obtain its own IP address on the physical LAN. What special enterprise VPN supported by Cisco devices creates VPN tunnels between branch locations as needed rather than requiring constant, static tunnels? Auto Switched VPN Service Dynamic SmartVPN Symmetric VPN Autodial Dynamic Multipoint VPN Dynamic Multipoint VPN What is the telnet utility a poor choice?It provides poor authentication and no encryption. Why is the telnet utility a poor choice for remote access to a device? a. It provides poor authentication and no encryption.
When using public and private keys to connect to an SSH server from a Linux device where must your public key be placed?To authenticate using SSH keys, a user must have an SSH key pair on their local computer. On the remote server, the public key must be copied to a file within the user's home directory at ~/. ssh/authorized_keys . This file contains a list of public keys, one-per-line, that are authorized to log into this account.
What term is used to describe a space that is rented at a data center facility by a service provider group of answer choices?Colocation (sometimes known as “colo”) is the practice of renting space for your servers and other computing hardware at a third-party provider's data center facility.
Which statement regarding the SSH collection of protocols is accurate?What statement regarding the SSH (Secure Shell) collection of protocols is accurate? SSH supports port forwarding. What is NOT a potential disadvantage of utilizing virtualization? Virtualization software increases the complexity of backups, making creation of usable backups difficult.
|