Chapter 6: Lesson Review Answers

Lesson

  1. Correct Answer: B

    1. Incorrect: AH provides data authentication but not data encryption.

    2. Correct: ESP is the protocol that provides encryption for IPsec.

    3. Incorrect: A server-to-server type connection security rule is used to authenticate data between two endpoints on a network. It cannot be used to encrypt all traffic in a domain.

    4. Incorrect: A tunnel type connection security rule is used to authenticate data between a tunnel endpoint and a client or set of clients. It cannot be used to encrypt all traffic in a domain.

  2. Correct Answer: A

    1. Correct: If both domains are in the same Active Directory forest, you can use the Kerberos protocol built into Active Directory to provide authentication for IPsec communication.

    2. Incorrect: ...

Get Self-Paced Training Kit (Exam 70-642): Configuring Windows Server® 2008 Network Infrastructure now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial