This chapter looked at configuring the VPN 3002 client and the VPN 3000 concentrators to support the VPN client features.
The VPN 3002 Hardware Client is a dedicated VPN device that can be used to connect one or more devices, including workstations, servers, hubs, cash registers, printers, and IP telephones to a company’s central network. The 3002 unit eliminates the need to install and configure VPN client software on the local workstation(s), plus it supports workstations running any TCP/IP supporting OS.
Configuring the VPN 3002 can be accomplished using a menu-driven version of the CLI or the more user-friendly Client Manager web-based application. The two systems have virtually identical steps and menu options making it easier to use both as needed.
The Quick Configuration option is used to provide the basic parameters required for connecting to a VPN Concentrator, which will “push” the basic IPSec configuration and security policy features down to the client. A wide variety of features can be configured on the VPN Concentrator to be pushed out to either VPN 3002 or VPN software clients. An auto-update feature facilitates configuration, software, and firmware upgrades.
1.? |
What is another name for VPN PAT mode?
|
|
2.? |
Which of the following is not an IPSec implementation used by the VPN 3002?
|
|
3.? |
The VPN 3002 CLI is most like which of the following?
|
|
4.? |
Which one of the following is not one of the three main menu sections for the VPN 3002?
|
|
5.? |
What is the command to upgrade the VPN 3002 software?
|
|
6.? |
Which of the following is a growing protocol for connecting ISPs through broadband connections like DSL/cable systems?
|
|
7.? |
What is the first feature(s) set with Quick Configuration?
|
|
8.? |
Where might the DHCP Server feature be configured on the VPN 3002?
|
|
9.? |
In which two cases would PAT always be used on outbound traffic?
|
|
10.? |
Which feature can be configured on either the VPN 3002 or the Concentrator?
|
|
11.? |
Which feature requires Virtual Cluster protocol configuration?
|
|
12.? |
Reverse Route Injection refers to which of the following?
|
|
13.? |
Which Cisco protocol allows wireless users to authenticate over VPN links?
|
|
14.? |
Which of the following is not supported by Client Update features?
|
|
15.? |
Which of the following might create problems for wireless users behind the VPN 3002?
|
|
Answers
1.? |
B. Client mode |
2.? |
D. IPSec over PPTP |
3.? |
D. None of the above. It is menu-driven, somewhat like the old 1900 switches |
4.? |
B. Reporting |
5.? |
D. None of the above. This is a menu-driven process |
6.? |
B. PPPoE |
7.? |
C. Set the System Time, Date, and Time Zone |
8.? |
B. Private interface. Where the LAN connects |
9.? |
B. Split tunnels, and C. Client mode |
10.? |
D. IPSec backup servers |
11.? |
B. IPSec Server load balancing |
12.? |
C. Inserting remote network routes in main network route tables |
13.? |
B. LEAP Bypass |
14.? |
C. Push Banner to VPN 3002 |
15.? |
B. Interactive Hardware Client Authentication. The wireless clients would have to wait for a wired user to authenticate the VPN 3002 to the Concentrator. |