Home » Cisco » 210-260 v.2 » What are purposes of the Internet Key Exchange in an IPsec VPN?
What are purposes of the Internet Key Exchange in an IPsec VPN? (Choose two.)
A. The Internet Key Exchange protocol establishes security associations
B. The Internet Key Exchange protocol provides data confidentiality
C. The Internet Key Exchange protocol provides replay detection
D. The Internet Key Exchange protocol is responsible for mutual authentication
Correct Answer: AD
Explanation/Reference:
Using the channel created in phase 1, this phase establishes IPSec security associations and negotiates information needed for the IPSec tunnel. This phase can be seen in the above figure as “IPsec-SA established.” Note that two phase 2 events are shown, this is because a separate SA is used for each subnet configured to traverse the VPN.
Reference: https://documentation.meraki.com/zGeneral_Administration/Tools_and_Troubleshooting/Networking_Fundamentals%3A_IPSec_and_IKEv