8 Flashcards
1
Q
Firewall features:
A
- All traffic must pass through the firewall
- Traffic only passes if it abides by the firewall’s policy
- Can’t be penetrated
2
Q
Characteristics of firewall access policy:
A
- IP address and protocol values
- Application protocol
- User identity
- Network activity
3
Q
Packet filtering firewall policies:
A
- Discard
- Forward
4
Q
Packet Filter Weaknesses:
A
- Limited logging
- Vulnerable to protocol bugs
- Vulnerable to application bugs
- No user authentication
5
Q
Packet Filter Attacks:
A
- IP address spoofing
- Source route attacks
- Tiny fragment attacks
6
Q
Locations of circuit-level gateway TCP connections:
A
- One between itself and a TCP user on an inner host
- One on an outside host
7
Q
SOCKS:
A
Framework that enables the use of a firewall
8
Q
SOCKS components:
A
- SOCKS server on the firewall
- SOCKS client library on all internal hosts
- SOCKS-ified client applications
9
Q
Firewall locations:
A
- Bastion host
- Host-based
- Personal firewall
10
Q
Bastion Host Common characteristics:
A
- Secure
- Authentication
- Many proxies
- Small proxies
- Independent proxies
- Proxies can restrict access
11
Q
Host-based advantages:
A
- Made for hosts
- Protection against internal and external threats
- Works as an additional layer of protection
12
Q
Firewall Topologies:
A
- Host-resident
- Screening router
- Single bastion inline
- Single bastion T
- Double bastion inline
- Double bastion T
- Distributed firewall
13
Q
Host-resident firewall:
A
Personal firewall + firewall on server
14
Q
Screening router:
A
Router between internal and external network
15
Q
Single bastion inline:
A
Firewall between internal and external router
