What are the 2 categories that VPNs are divided in to?
– Remote access VPNs – When a person uses a VPN client application to establish a secure tunnel across an ISP to an enterprise network. – Site-to-site VPN – When 2 different endpoints connect over a public network.
Explain what the qos pre-classify command does in regards to service policies.
The qos pre-classify command configures the IOS to make a temporary copy of the IP packet before it is encapsulated or encrypted so that the service policy on the egress interface can do its classification based on the original (inner) IP packet fields rather than the encapsulating (outer) IP packet header.
How do tunnel interfaces interact with service policies applied on physical interface they emanate?
When you apply a QoS service policy to a physical interface where one or more tunnels emanate, the service policy classifies IP packets based on the post-tunnel IP header fields. However, when you apply a QoS service policy to a tunnel interface, the service policy performs classification on the pre-tunnel IP header (inner packet).
What type of interfaces are able to use the qos pre-classify command?
This command is restricted to tunnel interfaces, virtual templates, and crypto maps, and it is not available on any other interface types.
Explain how Control Plane Policing (CoPP) is used on a Cisco device.
Control plane policing allows you to configure a QoS filter that manages the traffic flow of control plane packets.
What’s the difference between data plane traffic and control and management plane traffic?
Data plane traffic is traffic that enters a router, and the destination of this type of traffic is elsewhere other than the router itself. Control and management plane traffic is traffic that is indeed for the router, like routing updates, management traffic, and keepalives.
What command is used to specify the maximum bandwidth usage by a traffic class?