防火墙考试（Firewall exam）.doc

防火墙考试（Firewall exam） I. Basic questions: The default management address 1. Ruijie RG-60 firewall factory is 00 2. Ruijie RG-WALL 60 firewall default support two management modes: through CONSOLE command line mode, through the network port WEB (HTTPS) management. 3. when you run the IE browser using the USB key to manage the RG-60 firewall, the address entered in the address bar is 00:6667 4. when you use the digital certificate to manage the RG-60 firewall, when you run the IE browser, the address entered in the address bar is 00:6666 5. by default, the administrator account for the RG-60 firewall is admin, and the password is: firewall. 6. when configuring the RG-60 firewall for the first time using the WEB interface, you need to set the IP address of the managed host to 00 7. Ruijie RG-60 firewall can work in routing mode and transparent mode, mixed mode. 8. by default, all interfaces to the RG-60 firewall work in the routing mode. 9., in order to ensure communication security, through the remote management of the firewall, it uses a more secure protocol than the telnet protocol, the protocol is SSH, the port number of the protocol is 22. 10., when you deploy a firewall in the network, you want to not change the network structure, but also to achieve the purpose of protecting important networks. At this point, the firewall should work in transparent mode. 11., the commonly used VPN protocols are PPTP, L2TP and IPsec, in which PPTP and L2TP are second layers of VPN protocol, and IPsec is the third layer VPN protocol. 12.IPSec finally provides ESP and AH security protection for network data. The ESP protocol provides encryption and integrity for the data Protection, the AH protocol only provides integrity protection for data. Generally speaking, IPSec VPN uses the ESP protocol and the AH protocol only Use in some cases where encryption is forbidden. 13.VPN can realize the following functions: data confidentiality protection, data integrity protection, data source id