108 Networks

Question 1

Define and uses Host/Client:

Answer 1

any node that can be connected to a network, and allow users to interact with it and utilize its resources (i.e. a
computer or other networking device).

Question 2

Define and uses Application Server:

Answer 2

a server with the specific purpose of providing services to users from a centralized source.

Question 3

Define and uses Hub:

Answer 3

a layer 1 network device that allows for computers to be connected to share data. This device does not separate
collision domains.

Question 4

Define and uses Switch:

Answer 4

layer 2 network device that allows for computer to be connected to share data. This device separates each host onto
its own collision domain allowing for fast, reliable communication between hosts.

Question 5

Define and uses Router:

Answer 5

layer 3 network device that interconnects two or more computer networks together. A router is a networking device
whose software and hardware are customized to the tasks of routing and forwarding information and has two or more
network connections to allow cross-network communication to occur.

Question 6

Define and uses WAP:

Answer 6

Wireless Access Point, a layer 2 network device that functions similarly to a switch.

Question 7

Define and uses Proxy Server:

Answer 7

allows for multiple hosts to share a single internet connection. Has the ability to filter web traffic, as well as
cache commonly used internet pages to speed up internet activity.

Question 8

Define and uses Firewall:

Answer 8

can be either layer 4 or layer 7, and can be comprised of either hardware or software, or a combination of both.
Firewalls are frequently used to prevent unauthorized Internet users from accessing private networks connected to the
Internet, especially intranets.

Question 9

Define and uses VPN Concentrator:

Answer 9

built specifically for creating a remote-access VPN. They provide high availability, high performance
and scalability and include components, called scalable encryption processing (SEP) modules that enable users to easily
increase capacity and throughput.

Question 10

Define and uses Back-up:

Answer 10

refers to making copies of data so that these additional copies may be used to restore the original after a data loss
event (i.e. natural disaster or compromise).

Question 11

Define and uses Repeater:

Answer 11

a layer 1 device used to amplify signals transmitted between network nodes.

Question 12

Define the following layers of routing and common devices associated with each. ACCESS

Answer 12

consists of hubs, repeaters, switches and bridges (layer 1 and layer 2).

Question 13

Define the following layers of routing and common devices associated with each. DISTRIBUTION

Answer 13

LAN-based routers and layer 3 switches to interconnect separate networks.

Question 14

Define the following layers of routing and common devices associated with each. CORE

Answer 14

the network back-bone. Designed to be fault tolerant, have high data transfer rates, and low latency periods.

Question 15

a. Topology (Bus/Star/Ring/Mesh):

Answer 15

the logical layout of the network.

Question 16

b. LAN:

Answer 16

Local Area Network, a computer network covering a small area and contained behind a router.

Question 17

c. WAN:

Answer 17

Wide Area Network, a computer network that covers a broad area or services multiple groups of people by linking LANs together.

Question 18

d. MAN:

Answer 18

Metropolitan Area Network, a large computer network that usually spans a city or a large campus. Utilizes multiple access point to allow users over a large geographical area or location to connect to the same network and use its resources.

Question 19

e. GAN:

Answer 19

Global Area Network, a computer network that spans the globe.

Question 20

a. OSI Model: a logical layout of the interoperability of devices, systems, and applications. (From layer 1 to layer 7)

Answer 20

1. Physical – media, signal, binary
2. Data-Link – physical addressing (Media Access Control or Logical Link Control)
3. Network – logical addressing
4. Transport – end-to-end connections
5. Session – inter-host communications
6. Presentation – data presentation and encryption
7. Application – network process to application

Question 21

b. TCP/IP Model: a logical layout of the interoperability of devices, systems, and applications that utilize networking

Answer 21

Link Layer: Frame Header | Frame Data | Frame Footer
Internet Layer: IP Header | IP Data
Transport Layer: TCP Header | TCP Data
Application Layer: Data

Question 22

a. NIPRNET:

Answer 22

Non-classified Internet Protocol Router Network, is used to exchange sensitive but unclassified information between “internal” users as well as providing user’s access to the Internet.

Question 23

108.5 State the difference between IPv4 and IPv6.

Answer 23

1. IPv4 uses only 32 bits and has no unique identifiers; IPv6 uses a 128-bit address where the last 48 bits is the device’s full MAC address
2. IPv4 uses numeric addresses (205.x.x.x); IPv6 uses hexadecimal address (2001:0D45:FF00::0)
3. IPv4 octets are separated by a dot(.); IPv6 octets are separated by a colon(:)

Question 24

b. SIPRNET:

Answer 24

Secret Internet Protocol Router Network, is a system of interconnected computer networks to transmit classified information up to and including SECRET.

Question 25

c. JWICS:

Answer 25

Joint Worldwide Intelligence Communications System, is a system of interconnected computer networks cleared up to Top Secret and SCI.

Question 26

d. CENTRIXS:

Answer 26

Combined Enterprise Regional Information Exchange System is a collection of classified coalition networks, called enclaves, that enable information sharing using email and Web services, instant messaging or chat, the Common Operational Picture service, and Voice over IP. CENTRIXS supports combatant commands throughout the world, including the U.S. Pacific, Central and European commands. Also known as Secret Releasable

Question 27

a. CANES:

Answer 27

Consolidated Afloat Networks and Enterprise Services (CANES) provide a common computing network and common operating system for command, control, communications, computers, and intelligence (C4I) systems onboard Navy ships.

Question 28

b. DoDIN (GIG):

Answer 28

Department of Defense Information Network, is defined as a "globally interconnected, end-to-end set of information capabilities for collecting, processing, storing, disseminating, and managing information.”

Question 29

c. DISN:

Answer 29

Defense Information Systems Network, has been the United States Department of Defense's enterprise network for providing data, video and voice services for 40 years.

Question 30

d. NMCI:

Answer 30

Navy/Marine Corps Intranet, is an Information System provided by a contracting company (HP) to allow interoperability between CONUS Navy and Marine commands.

Question 31

e. ONENET:

Answer 31

OCONUS Navy Enterprise Network; OCONUS version of NMCI.

Question 32

f. IT21/ISNS:

Answer 32

Shipboard network. Legacy has been getting replaced by canes

Question 33

a. Machine Language:

Answer 33

is a system of instructions and data executed directly by a computer's central processing unit. Machine code may be regarded as a primitive programming language or as the lowest-level representation of a compiled and/or assembled computer program.

Question 34

b. Assembly Language:

Answer 34

is a type of low-level language for programming computers, microprocessors, microcontrollers, and other integrated circuits. They implement a symbolic representation of the numeric machine codes and other constants needed to program a particular CPU architecture.

Question 35

c. High-Level Language:

Answer 35

is a programming language with strong abstraction from the details of the computer. In comparison to low-level programming languages, it may use natural language elements, be easier to use, or be more portable across platforms.

Question 36

d. Operating System:

Answer 36

is a set of system software programs in a computer that regulate the ways application software programs use the computer hardware and the ways that users control the computer.

Question 37

e. Application:

Answer 37

is computer software designed to help the user to perform singular or multiple related specific tasks.

Question 38

a. Virus

Answer 38

: is a computer program that can copy itself and infect a computer using a host (typically benign looking) file. Requires user interaction to propagate across systems.

Question 39

b. Worm:

Answer 39

is a self-replicating malware program that uses a computer network to send copies of itself to other nodes. Unlike a virus, it does not need to attach itself to an existing program.

Question 40

c. Trojan:

Answer 40

is malware that appears to perform a desirable function for the user prior to executing, but instead facilitates unauthorized access of the user's computer system.

Question 41

d. Backdoor:

Answer 41

is a method of bypassing normal authentication, securing remote access to a computer, obtaining access to plaintext, and so on, while attempting to remain undetected.

Question 42

e. Phishing:

Answer 42

is the criminally fraudulent process of attempting to acquire sensitive information such as usernames, passwords and credit card details by masquerading as a trustworthy entity in an electronic communication.

Question 43

b. Buffer Overflow:

Answer 43

is a Denial-of-Service attack that overloads a system’s input capacity, thereby crashing the program, system, or preventing the user from accessing its resources.

Question 44

a. Network Enumeration:

Answer 44

is the process of scanning and compiling pertinent information of the layout of a network, its users, and its resources.

Question 45

c. SQL Injection:

Answer 45

overloads the input sector of an SQL database and allows the ability to execute arbitrary code forcing the database to divulge its contents or access privileges.

Question 46

d. Dictionary Attack:

Answer 46

attempts to crack passwords based on a list of words or values.

Question 47

e. Privilege Escalation:

Answer 47

the ability to escalate privileges to a level allowing the intruder to access or execute programs or data higher than the original intrusion perspective.

Question 48

f. Brute Force Attack:

Answer 48

physically inputting a user’s PII until access is granted to a system when credentials are unknown.

Question 49

g. Social Engineering:

Answer 49

the ability to get a user to divulge their credentials or other useful information about themselves or their organization by impersonating someone of authority.

Question 50

h. Rainbow Table:

Answer 50

precomputed table for caching the output of cryptographic hash functions, usually for cracking password hashes. Usually through brute force or dictionary attack.

Question 51

i. Denial of Service (DOS):

Answer 51

cyber-attack in which the perpetrator seeks to make a machine or network resource unavailable to its intended users by temporarily or indefinitely disrupting services of a host connected to the Internet.

Question 52

j. Distributed Denial of Service (DDOS):

Answer 52

malicious attempt to disrupt the normal traffic of a targeted server, service or network by overwhelming the target or its surrounding infrastructure with a flood of Internet traffic.

Question 53

108.11 Describe the functionality of PKI.

Answer 53

Public Key Infrastructure is a set of hardware, software, policies, and procedures needed to create, manage, distribute, use, store, and revoke digital certificates to provide encryption and data security in computer networks.

Question 54

a. Domain controllers -

Answer 54

On Microsoft Servers, a domain controller (DC) is a server that responds to security authentication requests (logging in, checking permissions, etc.) within a Windows domain. A domain is a concept introduced in Windows NT whereby a user may be granted access to a number of computer resources with the use of a single username and password combination.

Question 55

b. Exchange -

Answer 55

Microsoft Exchange Server is a calendaring and mail server developed by Microsoft that runs exclusively on the Microsoft Windows Server product line.

Question 56

c. Domain Name System or (SERVICE) -

Answer 56

translates URLs to IP addresses, and vice versa. It allows users to input an easy to remember domain name and be directed to the appropriate website.

Question 57

a. FTP -

Answer 57

PORT 20/21- File transfer Protocol

Question 58

b. SSH -

Answer 58

PORT 22- Secure Shell

Question 59

c. Telnet-

Answer 59

PORT 23 - Unsecure

Question 60

d. SMTP

Answer 60

PORT 25 – Simple Mail Transfer

Question 61

e. DNS

Answer 61

PORT 53 - Translates Domain name to IP

Question 62

f. DHCP

Answer 62

PORT 67/ 68 - Dynamic Host Configuration, used to assign IPs

Question 63

g. HTTP

Answer 63

PORT 30- Hypertext Transfer, used for internet connection

Question 64

h. HTTPS

Answer 64

PORT 443- HTTP combined with SSL ot TLS

Question 65

i. POP3

Answer 65

PORT 110- Retrieve Mail

Question 66

j. IMAP

Answer 66

PORT 143- POP3 with more support for remote mailboxes

Question 67

a. TCP:

Answer 67

It is a connection-oriented protocol. Reads data as streams of bytes, and the message is transmitted to segment boundaries.

Question 68

b. UDP:

Answer 68

It is a connectionless protocol. Messages contain packets that were sent one by one. It also checks for integrity at the arrival time.

Question 69

a. Mandatory Access Controls (MAC):

Answer 69

The operating system or database constrains the ability of a subject or initiator to access or generally perform some sort of operation on an object or target.

Question 70

b. Discretionary Access Controls (DAC):

Answer 70

Defined by the Trusted Computer System Evaluation Criteria "as a means of restricting access to objects based on the identity of subjects and/or groups to which they belong.

Question 71

c. Role Based Access Controls (RBAC):

Answer 71

restricting system access to only authorized users

Question 72

d. Separation of Duty:

Answer 72

divides critical functions among different staff members in an attempt to ensure that no one individual has enough information or access privilege to perpetrate damaging fraud.

Question 73

108.16 Define/Discuss VOIP and VOSIP

Answer 73

Voice over Internet Protocol, also called IP telephony, is a method and group of technologies for the delivery of voice communications and multimedia sessions over Internet Protocol networks

Question 74

e. Least Privilege:

Answer 74

must be able to access only the information and resources that are necessary

Question 75

a. Network Address Translation (NAT):

Answer 75

the translation of private IP address to a public IP address

Question 76

b. Port Address Translation (PAT):

Answer 76

an extension of Network Address Translation (NAT) that permits multiple devices on a LAN to be mapped to a single public IP address to conserve IP addresses.

Question 77

c. Demilitarized Zone (DMZ):

Answer 77

demilitarized zone is a perimeter network that protects an organization's internal local-area network (LAN) from untrusted traffic

Question 78

d. Virtualization:

Answer 78

: process of creating a software-based, or virtual, representation of something, such as virtual applications, servers, storage and networks. It is the single most effective way to reduce IT expenses while boosting efficiency and agility

Question 79

108.18 State the purpose of Active Directory.

Answer 79

"Provides Domain Services, Rights Management Services, Federation Services, Certificate Services, and Lightweight Directory Services. Integrated with Windows Server, gives out-of-the-box functionality needed to centrally configure and administer system, user, and application settings