What is the recommended practice when considering VPN termin

第1题：

第2题：

When designing remote access to the Enterprise Campus network for teleworkers and mobileworkers， which of the following should the designer consider？（）

• A、 It is recommended to place the VPN termination device in line with the Enterprise Edge 1
• B、 Maintaining access rules， based on the source IP of the client， on an internal firewall drawnfrom a headend RADIUS server is the most secure deployment
• C、 VPN Headend routing using Reverse Route Injection （RRI） with distribution is recommended when the remote user community is small and dedicated DHCP scopes are in place
• D、 Clientless SSL VPNs provide more granular access control than SSL VPN clients （thin or thick），including at Layer 7

第3题：

第4题：

What is the recommended practice when considering VPN termination and firewall placement？（）

• A、 have the firewall and VPN appliance deployed in parallel
• B、 place the VPN in line with the firewall， with the VPN terminating inside the firewall
• C、 place the public side of the VPN termination device in the DMZ behind a firewall
• D、 place the VPN in line with the firewall， with the VPN terminating outside the firewall

第5题：

What is the recommended practice regarding UDLD when implementing it in all fiber-optic LAN ports?（）

• A、Adjust the default hello timers to three seconds for aggressive mode.
• B、Enable it in global mode and on every interface you need to support.
• C、Enable it in global mode to support every individual fiber-optic interface.
• D、Enable it to create channels containing up to eight parallel links between switches.
• E、Enable it in global mode to support every individual fiber optic and Ethernet interface.

第6题：

What will an Easy VPN hardware client require in order to insert its protected network address when it connects using network extension mode？（）

• A、 RADIUS or LDAP
• B、 an internal router running EIGRP
• C、 Reverse Route Injection and OSPF or RIPv2
• D、 the VPN appliance to be deployed in line with the firewall

第7题：

A route-based VPN is required for which scenario? （）

• A、when the remote VPN peer is behind a NAT device
• B、when multiple networks need to be reached across the tunnel
• C、when the remote VPN peer is a dialup or remote access client
• D、when a dynamic routing protocol such as OSPF is required across the VPN

第8题：

第9题：

What is the recommended practice regarding UDLD when implementing it in all fiber-optic LANports？（）

• A、 Adjust the default hello timers to three seconds for aggressive mode
• B、 Enable it in global mode and on every interface you need to support
• C、 Enable it in global mode to support every individual fiber-optic interface
• D、 Enable it to create channels containing up to eight parallel links between switches

第10题：

As a network technician， do you know what is a recommended practice for secure configurationmanagement？（）

• A、Disable post scan
• B、Use SSH or SSL
• C、Enable trust levels
• D、Deny echo replies on all edge routers