Chapter 7 -- Network II
What type of scenario would be best served by using a Platform as a Service (PaaS) cloud model? A) A group of developers needs access to multiple operating systems and the runtime libraries that the OS provides. B) An organization wishes to gain access to applications through an online user interface, while maintaining compatibility across operating systems. C) An organization needs to have a hosted virtual network infrastructure for their services, which are run on virtual machines. D) A small organization needs to have high availability for their web server.
A group of developers needs access to multiple operating systems and the runtime libraries that the OS provides.
Amazon and Rackspace both utilize what virtualization software below to create their cloud environments? A) VMware vSphere B) Oracle VirtualBox C) Parallels D) Citrix Xen
Citrix Xen
Which of the following virtualization products is an example of a bare-metal hypervisor? A) Citrix XenServer B) VirtualBox C) VMware Player D) Linux KVM
Citrix XenServer
Which type of cloud service model involves hardware services that are provided virtually, including network infrastructure devices such as virtual servers? A) IaaS B) PaaS C) SaaS D) XaaS
IASS
Which statement regarding the IKEv2 tunneling protocol is accurate? A) IKEv2 is an older, Layer 2 protocol developed by Microsoft that encapsulates VPN data frames. B) IKEv2 is based on technology developed by Cisco and standardized by the IETF. C) IKEv2 is an open-source VPN protocol that utilizes OpenSSL for encryption. D) IKEv2 offers fast throughput and good stability when moving between wireless hotspots.
IKEv2 offers fast throughput and good stability when moving between wireless hotspots.
What security encryption protocol requires regular re-establishment of a connection and can be used with any type of TCP/IP transmission? A) L2TP B) TLS C) IPsec D) SSL
IPsec
When using public and private keys to connect to an SSH server from a Linux device, where must your public key be placed before you can connect? A) In an authorization file under your home directory on your computer. B) In an authorization file on the host where the SSH server is. C) In the /etc/ssh/keys folder. D) In the /var/run/ssh/public folder.
In an authorization file on the host where the SSH server is.
A vSwitch (virtual switch) or bridge is a logically defined device that operates at what layer of the OSI model? A) Layer 1 B) Layer 2 C) Layer 4 D) Layer 7
Layer 2
By default, what network connection type is selected when creating a VM in VMware, VirtualBox, or KVM? A) host-only mode B) bridged mode C) NAT mode D) lockdown mode
NAT Mode
At what layer of the OSI model does the IPsec encryption protocol operate? A) Physical layer B) Network layer C) Transport layer D) Application layer
Network Layer
What open-source VPN protocol utilizes OpenSSL for encryption and has the ability to possibly cross firewalls where IPsec might be blocked? A) Layer 2 Tunneling Protocol (L2TP) B) Point-to-Point Tunneling Protocol (PPTP) C) Generic Routing Encapsulation (GRE) D) OpenVPN
Open VPN
The use of certificate authorities to associate public keys with certain users is known by what term? A) public-key organization B) certified infrastructure C) public-key infrastructure D) symmetric identification
Public-key infastructure
What cloud service model involves providing applications through an online user interface, providing for compatibility with a multitude of different operating systems and devices? A) IaaS B)SaaS C) XaaS D) PaaS
Saas
Which statement regarding the use of a bridged mode vNIC is accurate? A) The vNIC will its own IP address on the physical LAN. B) The vNIC will be assigned a NAT-ed IP address. C) The vNIC will only be able to communicate across the bridge to the host PC. D) The vNIC will utilize the host PC's IP address.
The vNIC will its own IP address on the physical LAN
VMware Player and Linux KVM are both examples of what type of hypervisor? A) Type 1 hypervisor B) Type 2 hypervisor C) barebones hypervisor D) bare-metal hypervisor
Type 2 Hypervisor
When using a site-to-site VPN, what type of device sits at the edge of the LAN and establishes the connection between sites? A) VPN proxy B) VPN server C) VPN transport D) VPN gateway
VPN Gateway
What is NOT a potential disadvantage of utilizing virtualization? A) Multiple virtual machines contending for finite resources can compromise performance. B) Increased complexity and administrative burden can result from the use of virtual machines. C) Licensing costs can be high due to every instance of commercial software requiring a separate license. D) Virtualization software increases the complexity of backups, making creation of usable backups difficult.
Virtualization software increases the complexity of backups, making creation of usable backups difficult.
When is it appropriate to utilize the NAT network connection type? A) Only when the VM requires an IP address on the physical LAN. B) Whenever the VM does not need to be access at a known address by other network nodes. C) Only if the VM does not need to communicate with the host PC. D) Only if the VM is intended for VM-to-host communications.
Whenever the VM does not need to be access at a known address by other network nodes
The combination of a public key and a private key are known by what term below? Incorrect Response A) key set B) key team C) key pair D) key tie
key pair