Answers to the review questions can be found in Appendix A, "Answers to Review Questions."
Name the major VPN types of Cisco Enterprise VPN solutions.
What ports need to be open in the corporate firewall to ensure PPTP functionality?
What is the purpose of control messages in the L2TP protocol?
Define voluntary mode and compulsory mode in PPTP-based VPN.
What is the minimum set of negotiable attributes in IKE SA?
What does SPI stand for in IPSec?
What are the valid authenticating methods in IPSec?
What is the main difference between main mode and aggressive mode?
What is the main difference between transport mode and tunnel mode in IPSec?
Define the unidirectional and bidirectional security associations (SA). What kind of SA is an IKE SA? An IPSec SA?
What is ICV and how is it calculated?
Which ports have to open in the company's firewall to ensure ISAKMP, ESP, and AH operation?
What is the advantage of XAUTH among other authentication methods? What is type 1 authentication in XAUTH?
What is the size of the prime in DH Group 5?
What does PFS stand for? Explain PFS.