12 Network security

Question 2

What is the foundation of network security?

Answer 2

A secure design

Networks must be designed with security in mind, considering the attack surface and segmentation.

Question 3

What does NAC stand for in network security?

Answer 3

Network Access Control

NAC and 802.1X protect networks from untrusted devices.

Question 4

What are some methods to prevent network issues from malicious or misconfigured systems?

Answer 4

• Port security
• Loop prevention
• Broadcast storm protection

Question 5

What is the purpose of network taps?

Answer 5

Allow packet capture by creating a copy of traffic from other ports.

Question 6

What is a VPN used for?

Answer 6

To tunnel network traffic to another location.

Question 7

Fill in the blank: Secure network design includes concepts like _______.

Answer 7

[key learning term]

Examples include physical isolation, logical segmentation, and secure protocols.

Question 8

What is the function of jump servers?

Answer 8

Provide a secure way to access systems in another security zone.

Question 9

What are load balancers used for?

Answer 9

Spread load among systems.

Question 10

True or False: Proxy servers centralize connections from a group of clients to a server.

Answer 10

True

Question 11

What do web filters do?

Answer 11

Filter content and URLs based on rules.

Question 12

What is the role of data loss prevention systems?

Answer 12

Monitor to ensure that sensitive data is identified and flagged.

Question 13

What do IDS and IPS devices do?

Answer 13

Identify and take action based on malicious behavior.

Question 14

What types of firewalls are mentioned?

Answer 14

• Next-generation firewalls
• Web application firewalls
• Unified threat management appliances

Question 15

What is the purpose of access control lists?

Answer 15

Determine what traffic can flow through devices based on rules.

Question 16

What is out-of-band management?

Answer 16

Management interfaces on a separate VLAN or physical network.

Question 17

What does DNSSEC do?

Answer 17

Helps validate DNS servers and responses.

Question 18

What protocols are leveraged for email security?

Answer 18

• DMARC
• DKIM
• SPF

Question 19

What is the function of TLS in network security?

Answer 19

Protect network traffic.

Question 20

What do file integrity monitors check?

Answer 20

If files have been changed.

Question 21

What are honeypots and honeynets used for?

Answer 21

Gather information about attackers.

Question 22

What is the significance of secure protocols?

Answer 22

Provide ways to send and receive information securely.

Question 23

What are some key secure protocols mentioned?

Answer 23

• SRTP
• IMAPS
• POPS
• LDAPS

Question 24

Fill in the blank: On-path attacks _______ traffic through a system controlled by an attacker.

Answer 24

[key learning term]

Question 25

What are examples of DNS attacks?

Answer 25

• Domain hijacking
• DNS poisoning
• URL redirection

Question 26

What do credential replay attacks exploit?

Answer 26

Poorly designed or insecure protocols.

Question 27

What do denial-of-service attacks aim to do?

Answer 27

Consume resources or target services to cause them to fail.

Question 28

True or False: Reflected denial-of-service attacks use spoofed source addresses.

Answer 28

True

Question 29

What is the difference between reflected and amplified denial-of-service attacks?

Answer 29

Reflected uses spoofed addresses; amplified uses small queries for large results.