10 - Firewalls, IDS, and IPS Flashcards
What does IDS stand for?
Intrusion Detection System
What does IPS stand for?
Intrusion Prevention System
A(n) ___ is a barrier that intercepts and inspects traffic moving from one area of the network to another.
network firewall
A(n) ___ is a firewall that operates at layers 3 and 4 of the OSI network model.
packet filter
A(n) ___ is a device that operates as a middleman between two or more systems to help conceal the true identity of the client and server.
circuit-level gateway
- Operates at OSI layers 3-4
- Compares traffic against pre-established criteria
- Explicit ports must be opened to allow incoming and outgoing traffic
packet filter firewall
- Operates at OSI layers 3-5
* Automatically creates rules to permit traffic based on communication type
stateful inspection
- Operates at all OSI layers
- Analyzes packet content
- Blocks program-level traffic
application-level firewalls
What is the purpose of a firewall?
a) To protect physical assets from fire and other disasters
b) To protect electronic data from damage caused by a fluctuation in temperature
c) To restrict traffic from entering or exiting a network
c) To restrict traffic from entering or exiting a network
Ingress
enter
Egress
exit
Which 3 layers of the OSI model does stateful inspection require?
3-5
Which layers of the OSI model does a packet-filtering firewall operate in?
3-4
A system administrator wants to protect the local network from untrustworthy external traffic. Which device should this system administrator implement?
a) Router
b) Switch
c) Firewall
d) Repeater
c) Firewall
Intrusion ___ systems passively listen and monitor the network, alerting the admin of any detected suspicious behavior.
detection
