Chapter 7
Why is the telnet utility a poor choice for remote access to a device?
It provides poor authentication and no encryption.
Which of the following is NOT a task that a VPN concentrator is responsible for?
A VPN concentrator shuts down est. connections w/ malicious traffic occurs
PPP can support several types of Network layer protocols that might use the connection.
True
When using a site-to-site VPN, what type of device sits at the edge of the LAN and establishes the connection between sites
VPN gateway
What is NOT a potential disadvantage of utilizing virtualization?
Virtual software increases the complexity of backups. Usable backups difficult
Which FTP has no authentication or security for transferring files, uses UDP, and requires very little MEM to use?
Trivial FTP (TFTP)
An enterprise-wide VPN can include elements of both the client-to-site and site-to-site models.
True
Digital certificates are issued, maintained, and validated by an organization called a certificate authority (CA).
True
Which of the following virtualization products is an example of a bare-metal hypervisor?
Citrix XenServer
What security encryption protocol requires regular re-establishment of a connection and can be used with any type of TCP
IPSec
A community cloud is a service shared between multiple organizations, but not available publicly.
True
Office 365 is an example of an SaaS implementation with a subscription model.
True
Amazon and Rackspace both utilize what virtualization software below to create their cloud environments?
Citris Xen
In a software defined network, what is responsible for controlling the flow of data?
SDN Controller
model involves providing apps thru an online U/I, providing for compatibility w/a multitude of diff OS's
Saas
By default, what network connection type is selected when creating a VM in VMware, VirtualBox, or KVM?
NAT mode
Open-source VPN protocol utilizes OpenSSL for encryption, has the ability to cross firewalls where IPsec might be blocked
OpenVPN
The use of certificate authorities to associate public keys with certain users is known by what term?
public-key infrastructure
The Virtual Network Computing (VNC) application uses the cross-platform remote frame buffer (RFB) protocol.
True
What special enterprise VPN supported by Cisco creates VPN tunnels between branch locals as needed not requiring static tunnels
Dynamic Multipoint VPN
What type of scenario would be best served by using a Platform as a Service (PaaS) cloud model?
Developers need 2 access multiple OS's and the runtime libr -OS Provides
VMware Player and Linux KVM are both examples of what type of hypervisor?
Type 2 Hypervisor
Regarding VNC (Virtual Network Computing or Virtual Network Connection), what statement is accurate?
VNC is open source, allowing companies to develop their own software based
When is it appropriate to utilize the NAT network connection type?
Whenever the VM does not need to be access at a known address by other networks
At what layer of the OSI model does the IPsec encryption protocol operate?
Network Layer
What statement regarding the SSH (Secure Shell) collection of protocols is accurate?
SSH supports port forwarding.
Which of the following statements regarding the Point-to-Point (PPP) protocol is NOT accurate?
PPP can support strong encryption, such as AH or ESP.
What term is used to describe a space that is rented at a data center facility by a service provider?
point of presence (PoP)
In order to generate a public and private key for use with SSH, what command line utility should you use?
ssh-keygen
The PPP headers and trailers used to create a PPP frame that encapsulates Network layer packets vary between 8 and 10 by
FCS
A Type 2 hypervisor installs on a computer before any OS, and is therefore called a bare-metal hypervisor.
False
After L2TP establishing a VPN tunnel, GRE is used to transmit L2TP data frames through the tunnel.
False
FTPS (FTP Security or FTP Secure) and SFTP (Secure FTP) are two names for the same protocol.
False
The HTTPS (HTTP Secure) protocol utilizes the same TCP port as HTTP, port 80.
False
Which statement regarding the IKEv2 tunneling protocol is accurate?
IKEv2 offers fast throughput & good stability mving between wireless hotspots.
using public & private keys to connect to an SSH server from a Linux device, where must your public key be placed b/4 con
In an authorization file on the host where the SSH server is.
The combination of a public key and a private key are known by what term below?
Key Pair
A vSwitch (virtual switch) or bridge is a logically defined device that operates at what layer of the OSI model?
Layer 2
Cloud service model involves hardware serv that are provided virtually, incl NTWRK infrastructure devices(servers)
IaaS
Which statement regarding the use of a bridged mode vNIC is accurate?
The vNIC will its own IP address on the physical LAN.
