Chapter 19
| 1: | What is the main difference between an access list on a Cisco IOS router and an access list on a PIX Firewall? |
| A1: | Answer: The main difference between PIX and IOS ACLs is that the PIX ACL uses the network mask, and the IOS router uses a wildcard mask in the ACL. |
| 2: | What command creates an RSA key pair on a PIX Firewall with a 1024-bit key length? |
| A2: | Answer: ca generate rsa key 1024 |
| 3: | When using a GRE tunnel with an IOS router, where should you place the crypto map if you want to protect traffic going over the tunnel? |
| A3: | Answer: With GRE tunnels, you should always place the crypto map on both the logical (GRE) interface and the physical interface that the tunnel leaves the router on. Without the crypto map placement on both of these ... |
Get CCIE Practical Studies: Security (CCIE Self-Study) now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
