Chapter 11 - Advanced Networking Devices

Question 1

Which VPN technology enables direct connections between (multiple) satellite locations?

Answer 1

DMVPN (Dynamic Multipoint VPN).

Question 2

Which of the following is a protocol popular with today VPNs : PPTP, L2TP, IPsec, PPPoE.

Answer 2

Most VPN use IPsec today.

Question 3

A static VLAN assigns VLANs to _____.

Answer 3

Ports.

Question 4

Which of the following is the trunking protocol used in today’s VLANs? 802.1Q, 802.1X, 802.1t, 802.1z.

Answer 4

802.1Q.

Question 5

A content switch always work at leat at which layer of the OSI model?

Answer 5

7.

Question 6

When the network is very busy, VoIP calls start to sound badly clipped. what solution might improve the quality of the VoIP call?

Answer 6

Traffic shapping.

Question 7

What are the benafits of caching on a web proxy?

Answer 7

Web pages can be sent to the client quickly and can be checked for viruses.

Question 8

802.1X is a great example of ____.

Answer 8

Port authentification.

Question 9

What’s the most common method to configure a VLAN-capable switch?

Answer 9

Log onto the switch using SSH and use the CLI.

Question 10

What is a PPTP VPN?

Answer 10

Point to point tunneling protocol. The client connects to the RRAS (Routing and Remote Access Service) server to create a host to site connection. If you try to access the www, it will use the default gateway of the VPN.

Question 11

What is L2TP VPN?

Answer 11

Layer 2 Tunneling Protocol. The endpoint on the LAN is a router with a VPN-concentrator. It uses IPsec.

Question 12

What is a SSL VPN?

Answer 12

It uses TLS. The client connect via a web browser (portal or tunnel).

Question 13

What is DTLS VPN?

Answer 13

Datagram TLS VPN. SSL VPN Tunnel optimized for UDP.

Question 14

What is DMVPN?

Answer 14

Dynamic multipoint VPN.Runs over IPsec. Used to interconnect multiple satellite sites.

Question 15

What is a managed switch ?

Answer 15

A switch that handles logic, switching, security and many more.

Question 16

What is the difference between in-band and out of band management?

Answer 16

With in band management, the switch can be accessed from the clients LAN via the GUI. With out of band management, you dedicate only one port per switch to management and connect them all to a management switch.

Question 17

What is a VLAN?

Answer 17

A virtual LAN. The switch tags the traffic with a VLAN number in order for multiple sub-LAN to coexist without requiring additionnal IP submetting. VLAN are assigned to ports on managed switches.

Question 18

What is trunking?

Answer 18

Trunking is the process of transfering VLAN traffic from one switch to another.

Question 19

What is an access port?

Answer 19

A port that is configured to be used by a computer. It will tag the traffic depending on the VLAN that is configured.

Question 20

How do you make DHCP work in a routed network?

Answer 20

DHCP works with broadcast. If you want it to work in a VLAN network you can either host it on the router or have a DHCP relay agent in the router.

Question 21

What is a multilayer switch?

Answer 21

A switch that can handle content at layer 3 and 2. You will have switch port and router port on a MLS.

Question 22

What is load balancing?

Answer 22

Sometimes, a single server cannot fully service all the client. In this instance, multiple servers are built and dispersed. A cluster is formed and the load of the requests can be balanced between the different nodes.

Question 23

What is a content switch?

Answer 23

A switch that works at layer 7. Usefull for taking a part of the server tasks (handling SSL certificates and load balancing).

Question 24

What are QoS and Traffic Shapping?

Answer 24

Policies to ensure bandwidth sensitive protocols get enough bandwidth on the network.

Question 25

What is PAgP?

Answer 25

Port aggregation protocol.

Question 26

What is LACP?

Answer 26

Link Aggregation Control Protocol.

Question 27

What is the difference between an IDS and an IPS?

Answer 27

IDS are out of the network (through port mirroring) and can only detect intrusion. IPS are inline and can react to intrusion. They slow down the network and when they break, the whole metwork goes down (single point of failure).

Question 28

What are proxy and reverse proxy servers?

Answer 28

Proxy servers are used by the client to act on its behalf. It can be used for filtering, privacy or security. A reverse proxy is used by the servers to first respond to client. It can be used for load balancing and security.