10

Question 1

_____________ involves transmitting a large volume of TCP (SYN) connection requests to a target system and then does not complete the TCP three-way handshake; thus overwhelming the system.

How to mititagte?

Answer 1

TCP SYN Attack

permit tcp any any established line

Question 2

TCP-Intercept

In _________ mode, the router acts as a proxy by handling the establishment of each TCP connection on behalf of both the client and server.

Answer 2

intercept

Question 3

TCP-Intercept

in _________ mode, the software passively watches the connection requests flowing through the router. If a connection fails to get established in a configurable interval, the software sends a RST to the server to clear up its state

Answer 3

watch

Question 4

A _____________ involve sending a a packet to the router with the same IP address in the source and destination fields

How do I mititgate?

Answer 4

land attack

Question 5

_________ attacks send a large amount of ICMP Echo packets to a subnet’s broadcast address with a spoofed source IP address from that subnet

How do I mitigate?

Answer 5

Smurf

deny icmp any host “broadcast address”

Question 6

_________ attacks are destined for a networks broadcast address and utilize udp

How do I mitigate?

How do I mitigate both fraggle and smurf?

Answer 6

fraggle
deny udp any host”broadcast address”

deny ip any host “broadcast address”

Question 7

________ is used to describe when one network protocol, called the payload protocol, is encapsulated within a different delivery protocol

Answer 7

Tunneling

Question 8

______________ is a suite of protocols for securing IP communications by authenticating and/or encrypting each IP packet in a data stream

Answer 8

IPsec

Question 9

IPsec

In __________ mode, only the payload of the IP packet is encrypted and/or authenticated

Answer 9

transport

Question 10

Ipsec

In __________ mode, the entire IP packet (data plus the message headers) is encrypted and/or authenticated

Answer 10

tunnel

Question 11

The IP ___________ header provides integrity, authentication, and non-repudiation if the appropriate choice of cryptographic algorithms is made

Answer 11

Authentication

Question 12

The IP _____________ provides confidentiality, along with optional (but strongly recommended) authentication and integrity protection

Answer 12

ESP

Question 13

______ is the cisco default tunneling protocol designed to encapsulate a wide variety of Network Layer Packets inside IP tunneling packets

How can I tell if this tunneling protocol is being useed?

Answer 13

GRE

since its the default there wont be anything specifically telling you its this

Question 14

________ is an __________ protocol that allows data exchange using a secure channel between two computers

Answer 14

SSH Application layer 7

Question 15

___ and _____ are cryptographic protocols that provide secure communications on the internet for such things as web browsing, email, internet faxing, instant messaging, and other data transfers

Answer 15

TLS SSL

Question 16

_______________ is a method of bypassing firewall or proxy restrictions. It works by creating a tunnel.

Answer 16

Http tunnel

Question 17

_______________, also known as network masquerading or IP-masquerading, involves rewriting source and/or destination addresses of IP packets as they pass through a router or firewall.

Answer 17

NAT

Question 18

Whihc of these terms are used to designate in what network a particular address appears in?
Local
Global
Inside
Outside

Answer 18

inside
outside

Question 19

How can I find the global inside address for a tunnel?

Answer 19

within the run configuration the first ip address mentioned by that tunnel is the global in

Question 20

__________ allows for a one-to-one translation of local to global addresses.

Answer 20

static

Question 21

_________ is translating multiple local addresses to a pool of global addresses.

Answer 21

Dtnamic

Question 22

_________, also referred to as Overloading in the router, is a form of dynamic NAT that maps multiple unregistered IP addresses to a single registered IP address by using different ports

Answer 22

PAT

Question 23

______________ is an extension to static mapping which allows one global address to be mapped to multiple inside addresses for distributing conversions among multiple hosts

Answer 23

TCP Load Distribution

Question 24

What nat command shows me active address translations occurring

Answer 24

show ip nat translations

Question 25

What are the three commands I need to know for this test?

Answer 25

show ip nat transaltions
show run
show access-list