CCNP Security VPN FAQ: Monitoring and Administering the VPN 3000 Series Concentrator

CCNP Security VPN FAQ: Monitoring and Administering the VPN 3000 Series Concentrator

Q1. What screen is used to set the password for the administrator?

Q2. You wish to limit HTTP access to the concentrator to hosts on the same subnet as the inside interface of the concentrator. What is the format of the Access Control List?

Q3. What types of AAA servers can the VPN 3000 Series Concentrator use for authenticating management sessions?

Q4. What is the upper limit for a management session timeout?

Q5. What form of encryption may be used on a configuration file?

Q6. On what screen can routes be cleared?

Answer: Monitoring | Routing Table

Q7. Where can you see the CPU utilization on a Cisco 3000 Series Concentrator?

Q8. Where can you troubleshoot an IPSec connection?

Q9. Where can you troubleshoot TCP/IP connections?
(Note that the keyword in this question is “connection,” which requires TCP):

Q10. Where can you see the number of collisions on an Ethernet Interface?

Q11. What screen is used to set the password for the administrator?

Q12. You wish to limit HTTP access to the concentrator to hosts on the same subnet as the inside interface of the concentrator. What is the format of the Access Control List?

Q13. What types of AAA servers can the VPN 3000 Series Concentrator use for authenticating management sessions?

Q14. What is the upper limit for a management session timeout?

Q15. What form of encryption may be used on a configuration file?

Q16. On what screen can routes be cleared?

Q17. Where can you see the CPU utilization on a Cisco 3000 Series Concentrator?

Q18. Where can you troubleshoot an IPSec connection?

Q19. Where can you troubleshoot TCP/IP connections?
(Note that the keyword in this question is “connection,” which requires TCP):

Q20. Where can you see the number of collisions on an Ethernet Interface?

Q21. What is the major difference between the Monitoring | Statistics and the Monitoring | Statistics | MIB II sections?

Q22. You wish to limit the number of concurrent management connections. Where is this done?

Q23. You wish to use a AAA server to authenticate management access to the concentrator.What must you use?

Q24. What are the differences between the Filterable Event Log screen and the Live Event Log screen?

Q25. On what screen can you see if a certificate has been requested but has not yet been received?

Q26. What section should you look in if you want to see the number of pings sent and received? From where on the concentrator do you send a ping?

Q27. Name two places that you can see the current software version on a concentrator.

Q28. What are the access control lists as defined in the Administration | Access Rights | Access Control Lists screen used for?

Q29. You find out that your assistant has changed the configuration and saved that new configuration. However, something was configured incorrectly. None of remote sites or remote users can connect to the concentrator. What is the quickest way to resolve the issue?

Q30. A remote client with a VPN 3002 hardware client calls you on the phone saying that he is unable to connect to your network. He says that he may have incorrectly configured the preshared key on his end. You have access through HTTP to your concentrator. Where is the first place you look to see if this is a preshared key issue?