CCNP Security VPN FAQ: Configuring Cisco VPN 3000 for Remote Access Using Preshared Keys
Question. What methods can you use for user authentication on the Cisco VPN 3000 Series Concentrators?
Question. What methods can you use for device authentication between VPN peers?
Question. What are the three types of preshared keys?
Question. What is a unique preshared key?
Question. When you boot up a Cisco VPN 3000 Concentrator with the default factory configuration, what happens?
Question. What information do you need to supply in the command-line interface (CLI) portion of Quick Configuration?
Question. Which interface do you need to configure using the browser-based VPN Manager?
Question. What is the default administrator name and password for VPN concentrators?
Question. How do you get your web browser to connect to the VPN concentrator’s Manager
application?
Question. What is the default administrator name and password for the GUI VPN Manager?
Question. What are the three major sections of the VPN Manager system?
Question. What hot keys are available in the standard toolbar of the VPN Manager?
Question. From where do users inherit attributes on the VPN concentrator?
Question. How many groups can a user belong to in the VPN concentrator’s internal database?
Question. What is an external group in the VPN Manager system?
Question. When reviewing the list of attributes for a group, what does it mean when an attribute’s Inherit? box is checked?
Question. What are the nine subcategories under the Configuration | System option in the VPN Manager’s table of contents?
Question. Where would you configure information for Network Time Protocol (NTP) and Dynamic Host Configuration Protocol (DHCP) servers within the VPN Manager?
Question. What tunneling protocol can you configure on the VPN concentrator to support the Microsoft Windows 2000 VPN Client?
Question. What dynamic routing protocols are available on the VPN 3000 Concentrators?
Question. What Microsoft Windows operating systems can support the Cisco VPN Client?
Question. How do you start the Cisco VPN Client on a Windows system?
Question. How do you start the Cisco VPN Client installation process?
Question. What variables can you supply during the installation process of the Cisco VPN Client?
Question. Where would you normally use unique preshared keys?
Question. To use a web browser to access the VPN Manager application on VPN concentrators, what features must you enable on the browser?
Question. What information is required to configure a LAN interface on the VPN concentrator?
Question. What is the default administrator name and password for the GUI VPN Manager?
Question. What options are available for addressing an IP interface on the IP Interfaces screen?
Question. What is the maximum number of combined groups and users that can be supported on a VPN 3015 Concentrator?
Question. What are the four subcategories under the Configuration option of the VPN Manager’s TOC?
Question. On the General tab of a group’s Add screen, what options can you select for Access Hours?
Question. What IPSec protocols are available from the default IPSec SA settings on the IPSec tab of the Group Add screen?
Question. What are the nine subcategories under the Configuration | System option in the VPN Manager’s table of contents?
Question. Where does the VPN concentrator store system events?
Question. What areas can be configured under the Traffic Management section of the Configuration | Policy Management section?
Question. Where do you enter the preshared key so that a VPN Client can connect to a VPN concentrator?
Question. What are the three types of preshared keys?
Question. What types of interfaces are the Public and Private VPN interfaces?
Question. Which interface do you need to configure using the browser-based VPN Manager?
Question. What would you do if you needed to re-enter the Quick Configuration mode after you have completed the initial configuration of the VPN concentrator?
Question. When the VPN Manager’s Main window is displayed, how do you continue with the Quick Configuration that was started at the CLI?
Question. What methods can be selected for assigning IP addresses to the tunnel endpoints from the Quick Configuration Address Assignment screen?
Question. When using the VPN Manager, how can you tell that you have made changes to the active configuration?
Question. What is an external group in the VPN Manager system?
Question. What is the purpose of the SEP card assignment attribute on the General tab of the Group Add screen?
Question. You would like to be able to pass DNS and WINS information from the VPN concentrator to the VPN Client. What Group option can you use to accomplish this?
Question. What dynamic routing protocols are available on the VPN 3000 Concentrators?
Question. What protocol does the VPN concentrator use to update software versions on Cisco VPN 3002 Hardware Clients?
Question. How do you start the Cisco VPN Client installation process?
Question. What methods can you use for user authentication on the Cisco VPN 3000 Series
Concentrators?
Question. What is a group preshared key?
Question. When you boot up a Cisco VPN 3000 Concentrator with the default factory configuration, what happens?
Question. If you supply an address of 144.50.30.24 and want to use a 24-bit subnet mask for the Private interface on a VPN concentrator, are you able to accept the default subnet mask
offered by the VPN Manager?
Question. What are the three major sections of the VPN Manager system?
Question. The Quick Configuration system has displayed the System Info screen. What information, other than system date and time, can you enter on this screen?
Question. What is the maximum number of combined groups and users that can be supported on a VPN 3060 Concentrator?
Question. From where do users inherit attributes on the VPN concentrator?
Question. What is the default number of simultaneous logins available to group members?
Question. What is the purpose of IKE keepalives?
Question. Where would you configure information for NTP and DHCP servers within the VPN Manager?
Question. What is the most significant event severity level?
Question. What Microsoft Windows operating systems can support the Cisco VPN Client?
Question. What programs are available within the VPN Client installation?
Question. What is a unique preshared key?
Question. What type of cable does the console port require on VPN concentrators?
Question. What is the default administrator name and password for VPN concentrators?
Question. How do you get your web browser to connect to the VPN concentrator’s manager
application?
Question. What is the first screen that appears when you click the Click here to start Quick Configuration option in the VPN Manager?
Question. If you select Internal Server as the method of user authentication, what additional screen does the Quick Configuration system give you?
Question. When do configuration changes become active on the Cisco VPN 3000 Series Concentrators?
Question. When reviewing the list of attributes for a group, what does it mean when an attribute’s Inherit? box is checked?
inherited from the Base Group.
Question. What is a realm in relation to user authentication?
Question. What is split tunneling?
Question. What management protocols can you configure on the VPN concentrator?
Question. What is the process a VPN Client uses to connect to a VPN concentrator when load
balancing is used between two or more VPN concentrators?
Question. What variables can you supply during the installation process of the Cisco VPN Client?
Question. What methods can be used for device authentication between VPN peers?
Question. What is a wildcard preshared key?
Question. What information do you need to supply in the CLI portion of Quick Configuration?
Question. What is the last step you must take before moving from the CLI Quick Configuration mode to the browser-based Quick Configuration mode?
Question. What hot keys are available in the standard toolbar of the VPN Manager?
Question. What tunneling protocols does the VPN concentrator support?
Question. When you select IPSec as the tunneling protocol, what screen does Quick Configuration present?
Question. How many groups can a user belong to in the VPN concentrator’s internal database?
Question. What is the size range for user authentication passwords for internal users?
Question. What does the Authentication option RADIUS with Expiry provide?
Question. What tunneling protocol can be configured on the VPN concentrator to support the Microsoft Windows 2000 VPN client?
Question. How does the VPN 3000 Concentrator handle software updates for VPN Software
Clients?
Question. How do you start the VPN Client on a Windows system?