AR's Notes Flashcards

Question

FTP

Answer 1

- file transfer protocol - port 20/21 - application layer - transfer of computer files between client and server - does not encrypt traffic

Answer 2

- port 23 - application layer - virtual terminal connections, insecure

Answer 3

- trivial file transfer protocol - port 69 - application layer - no authentication file transfer, used in controlled environments because simple and lacks security

Answer 4

- port 110 - application layer - retrieves emails from remote server - used for infrequent access or offline operation

Answer 5

- port 143 - application layer - email retrieval and storage - messages can be kept on server and synced across multiple devices

Answer 6

Transport layer

Answer 7

IP, ICMP, RIP, OSPF, BGP, IGMP, IPX, IPSec, NAT

Answer 8

sublayer of datalink that manages protocol access - responsible for addressing and channel access control mechanisms

Answer 9

upper sublayer of data link layer that provides flow control and error control

Answer 10

ARP, PPP, L2TP, ethernet, FDDI, asynchronous transfer mode

Answer 11

EIA/TIA-232, HSSI, ISDN, DSL, 10BASE....

Answer 12

- network layer - directs data packets between different networks based on IP addresses - uses routing tables, provides network security

Answer 13

- data link layer (2) - forwards data based on MAC address - creates separate collision domains for each port - used to connect devices within same network or VLAN

Answer 14

distributes incoming network traffic across multiple servers - operates at various layers of OSI

Answer 15

globally distributed network of proxy servers - cache content

Answer 16

1.0.0.0 = 126.255.255.255

Answer 17

128.0.0.0 - 191.255.255.255

Answer 18

192.0.0.0 - 223.255.255.255

Answer 19

169.254.0.0 - 169.254.255.255 - self assigned by host when DHCP request fails

Answer 20

127.0.0.0 - 127.255.255.255 - used for testing network interface

Answer 21

allows for more efficient use of organization's allocated IP address space by enabling creation of logically segmented networks

Answer 22

- port 22 - extension of SSH to provide secure method for file transfer - application layer

Answer 23

- port 22 - cryptographic, provides secure channel over unsecured network - encrypts all traffic

Answer 24

- port 53 - naming system, translates domain names to IP addresses

Answer 25

- port 67/68 - 67 for server and 68 for client

Answer 26

- port 443 - provides secure web browsing

Answer 27

- port 587 - secure email transmission with encrypted data

Answer 28

- port 995 - secure retrieval of email from remote server

Answer 29

- port 993 - secure IMAP

Answer 30

- network time protocol - port 123 - synchronizes clocks of computers over network - high precision time correction

Answer 31

- port 389 - accessing and maintaining distributed directory information services over IP network - storing user credentials and groups

Answer 32

- port 636 - secured LDAP

Answer 33

- server message block - port 445 - used for network file sharing, for windows and IP-based comm.

Answer 34

- port 514 - message logging to track and record system messages

Answer 35

- port 1433

Answer 36

- port 3389 - microsoft protocol that enables remote connections to other computers - graphical interface

Answer 37

- session initiation protocol -port 5060 - signaling protocol for sessions - fundamental to VoIP, enabling establishment of call sessions and multimedia distribution - app layer

Answer 38

- internet control message protocol - manage and troubleshoot network issues, error reporting, providing feedback

Answer 39

- generic routing encapsulation - tunneling protocol by Cisco that creates virtual point-to-point link - commonly used for VPNs

Answer 40

- transport mode and tunnel mode - securing internet communications and establishing VPNs

Answer 41

up to 40 Gb

Answer 42

above 100 Gb

Answer 43

up to 1100 meters

Answer 44

up to 40 km

Answer 45

used for broadband internet, supporting high speed data transmission - television and satellite - RG-6

Answer 46

- secure locking connector - used in old bus and ring networks

Answer 47

twisting hand screw commonly found on cable modems

Answer 48

- long distance communication - minimizes attenuation and dispersion over distances - used in telecomm. and cable TV networks

Answer 49

- larger diameter fibers that allow multiple modes of light to propagate simultaneously - within building or campus networks - popular for LANs

Answer 50

- fiber optic - used in SMF installations

Answer 51

- fiber optic - square - snaps-in - used in SMF and MMF

Answer 52

- fiber optic - little - snaps in - small form factor - SMF and MMF

Answer 53

used for high-speed, short-distance coper 10 Gb or 40 Gb ethernet - shielded

Answer 54

- 8 wires, 4 pairs - most used in homes and offices - least expensive

Answer 55

- twisted pair - 4 pin - dial-up modems and analog phones

Answer 56

- twisted pair - 8 pin - desktops, laptops, servers

Answer 57

cat standards

Answer 58

- 100 Mbps - 100 meters - older networks

Answer 59

- 1000 Mbps/1Gbps - 100 m distance

Answer 60

- 10Gbps/55 meters - 1 Gbps/100 meters

Answer 61

- 10Gbps - 100 m - thicker wires

Answer 62

10 Gbps, 100 m

Answer 63

- 25 - 40 Gbps - 30 m

Answer 64

used to connect like devices

Answer 65

used to connect unlike devices ex: router to switch

Answer 66

optical module transceiver used for data and telecomm. - up to 4.25 Gbps - + is up to 10 Gbps

Answer 67

connector used for fiber optic or electrical copper connections - speeds up to 28 Gbps

Answer 68

- network virtualization tech - extends Layer 2 segments, enabling creation of large number of virtualized LANs

Answer 69

emerging frameworks combining network security functions with WAN capabilities - integrates services and functions directly into network fabric

Answer 70

centralized various security services provided in cloud

Answer 71

- 128 bit addresses - improves routing efficiency, enhances security

Answer 72

- IPv6 method used to transmit packets over existing IPv4 infrastructure - allows coexistence of both protocols - encapsulates IPv6 packets within IPv4 packets

Answer 73

network where devices run both IPv4 and IPv6 simultaneously

Answer 74

network address translation that facilitates communication between IPv4 and IPv6 devices

Answer 75

process of selecting paths in a network along which to send network traffic

Answer 76

route LAN in one location to LAN in another

Answer 77

route one customer's WAN link to another customer's WAN link

Answer 78

hops-based routing protocol that forwards packets using path with fewest number of hops

Answer 79

bandwidth-based routing protocol that forwards packet using path with highest bandwidth

Answer 80

uses hop count as metric, with max of 15 hops - v1 is classful, v2 is classless - good for small to medium networks - older

Answer 81

- link state routing protocol - fast convergence and supports large networks - suitable for large, complex networks - load balancing and fault tolerance

Answer 82

- distance vector and link state combined - supports VLSM and CIDR, provides loop-free paths and load balancing - suitable for medium to large networks with Cisco

Answer 83

- essential for inter-domain routing on the internet - crucial for ISPs and large enterprises

Answer 84

number of contiguous bits of network mask set to 1

Answer 85

inserting VLAN identifier into ethernet frames to distinguish between different VLANs on a trunk link - multiple VLANS can share a single physical connection

Answer 86

default VLAN on trunk port that carries untagged traffic

Answer 87

helps prevent network loops in ethernet topology by creating spanning tree that logically blocks redundant paths - routes effectively

Answer 88

combines multiple network ports into single group, increasing bandwidth and providing redundancy for higher data throughput and reliability - consolidates multiple links between switches or switches/servers

Answer 89

allows redistribution of traffic from one port to another

Answer 90

- larger than 1500 bytes and up to 9000 bytes - can reduce overhead and improve performance in high-throughput networks

Answer 91

- long range because better wall penetration - slower data rates - higher rate of interference

Answer 92

provides faster data rates at short distances - less interference

Answer 93

enhances 802.11 by adding support for dynamic frequency selection and transmit power control

Answer 94

- 5GHz - 54 Mbps - wifi 1

Answer 95

- 2.4 GHz - 11 Mbps - wifi 2

Answer 96

- 2.4 GHz - 54 Mbps - wifi 3

Answer 97

- 2.4, 5 GHz - 600 Mbps - wifi 4

Answer 98

2.4, 5 GHz - 3.5 Gbps - wifi 5

Answer 99

2.4, 5 GHz - 9.6 Gbps - wifi 6

Answer 100

group of wireless devices operating with same AP

Answer 101

serves as MAC address for a wireless AP - essential when multiple APs deployed

Answer 102

- transmits signal in all directions - most common - shorter range

Answer 103

- directional - focus wireless signal up to a mile

Answer 104

- directional - focus wireless signal up to 8 miles

Answer 105

decentralized and do not rely on pre-existing infrastructure

Answer 106

rely on fixed routers, most common network type

Answer 107

- PSK via CCMP - encrypts with AES

Answer 108

- SAE via GCMP - encrypts with AES

Answer 109

uses more secure approach by employing RADIUS server to manage user's authentication individually - stronger security

Answer 110

primary hub of network's cabling system - centrally located

Answer 111

serves as secondary hub, positioned to reduce distance data must travel between MDF and end users - located on each floor or section

Answer 112

designed to distribute electric power to various components within network or data center

Answer 113

- network functions virtualization - decoupling network functions from hardware devices - flexible deployment and management

Answer 114

allows instances in private subnet to connect to internet

Answer 115

- stateless address auto-configuration - IPv6 feature that allows device to automatically configure own IP address without DHCP

Answer 116

DNS server takes on responsibility of retrieving data from other DNS servers on behalf of client

Answer 117

resolve domain name to IP address - records like A, AAAA, MX

Answer 118

handles mapping of IP addresses back to domain names - used in reverse DNS lookups

Answer 119

- DNS security extensions - enhances DNS security by providing authentication of DNS data, verifying integrity and ensuring it has not been tampered with - used digital signatures

Answer 120

encrypts DNS queries - routes queries through HTTPs protocol

Answer 121

maps alias name to true domain name

Answer 122

maps IP address to domain name - opposite of A or AAAA record

Answer 123

- IP address management - organizing, tracking, managing IP address space within network - helps prevent IP conflicts

Answer 124

unsolicited messages sent from SNMP-enabled device to management station, notifying it of significant events or conditions

Answer 125

tool used for gathering log data generated by devices within a network

Answer 126

max acceptable amount of data loss measured in time before disaster occurs

Answer 127

targeted duration of time within which business process must be restored to avoid unacceptable consequences

Answer 128

calculated average time between failures of a system

Answer 129

average time required to repair a failed component

Answer 130

- most affordable - no equipment, connections, or data - takes days to weeks to recover

Answer 131

- contains some equipment and connections, but out of date configurations and data sets - hours to days to recover

Answer 132

- most expensive but fastest recovery - contains all equipment, connections, recent configurations

Answer 133

connects entire networks to each other

Answer 134

- remote access VPN - allows individual clients to connect to corporate network securely over the internet

Answer 135

allows users to securely access network resources through web browser without installing dedicated VPN client software

Answer 136

only network traffic from corporate site passes through VPN tunnel, while other traffic accesses internet directly - reduces load on VPN gateway but exposes security risks

Answer 137

all of client's internet traffic is routed through VPN to corporate network - increases security but leads to higher bandwidth usage and slower performance

Answer 138

- checksums and cryptographic hash functions - digital signatures - access controls

Answer 139

probability of a threat exploiting a vulnerability

Answer 140

- identity and access management - framework of business processes, policies, and technologies that facilitate management of electronic or digital identities - controls user access

Answer 141

- security models where access rights regulated by central authority based on different levels of security clearance - common in government and military, permissions set/enforced by systems admin

Answer 142

- resource owners decides on access levels; flexible - risks of users granting excessive access

Answer 143

assigns permissions based on user's role within organization

Answer 144

based on set of rules defined by systems admin

Answer 145

uses policies that evaluate attributes of users, environment, resources - provides fine-grained control

Answer 146

- between an identity provider and service provider - used for SSO, enterprise-level especially

Answer 147

open standard for access delegation, used to access user's data without exposing user credentials

Answer 148

network of honeypots

Answer 149

decoy files that appear legit and contain attractive data

Answer 150

broader term that refers to any decoy data or token inserted into a system

Answer 151

dividing network into smaller segments or subnets to improve security and performance

Answer 152

systems used in industrial production

Answer 153

framework used to create, manage, distribute, use, store, and revoke digital certificates and manage public-key encryption

Answer 154

code inserted into software that will set off a malicious function when specified conditions are met

Answer 155

attacker overwhelms random ports on targeted host with IP packets containing UDP datagrams - slows down/crashes system

Answer 156

type of DoS attack that targets TCP connection sequence 3-way handshake

Answer 157

attackers forces third-party servers to direct traffic to victim - ex: IP spoofing

Answer 158

network attack that exploits vulnerabilities to send packets from one VLAN to another, bypassing Layer 2 security measures

Answer 159

attacker overwhelms network switch with fake MAC. address, leading to switch acting like a hub and broadcasting all incoming traffic to all ports

Answer 160

attacker sends falsified ARP messages over LAN resulting in linking of attacker's MAC address with IP address of a legit computer

Answer 161

sending malicious ARP messages to local network, allowing attacker to intercept, modify, or block data

Answer 162

encoding data of other programs or protocols in DNS queries and responses

Answer 163

done by stealing session tokens, allowing impersonation of the victim and unauthorized access to systems or information

Answer 164

attacker downgrades secure HTTPS connection to unencrypted HTTP connection

Answer 165

installing security software on individual devices (endpoints) like antivirus, anti-malware, firewalls, IDS.

Answer 166

controls network traffic to and from a single host, managing what traffic is allowed based on predefined security rules

Answer 167

IEEE standard for port-based network access control - used to authenticate devices

Answer 168

1. device attempt to connect 2. authenticator blocks all traffic except 802.1X traffic 3. supplicant/client device sends credentials to authenticator 4. authenticator forwards to authentication server 5. server approves credentials and instructs authenticator to allow access

Answer 169

supports multiple authentication mechanisms - used in PPP, RADIUS, 802.1X

Answer 170

- basic - inspects packets and permits/denies based on source/destination IP, ports, protocols

Answer 171

- track state of active connections and make decisions based on context of the traffic

Answer 172

- more advances, integrates functionalities like deep packet inspection, IPS, app awareness

Answer 173

subnetwork that contains/exposes organization's external-facing services to an untrusted network, usually the internet

Answer 174

1. identify problem 2. establish theory 3. test theory 4. establish plan of action 5. implement solution/escalate 6. verify full system functionality 7. document findings

Answer 175

- gather information - question users - see if anything changed - duplicate problem

Answer 176

- question the obvious - consider multiple approaches - top-bottom or bottom-top OSI - divide and conquer

Answer 177

signal transmitted on one cable or channel interferes with signal on another cable or channel - using incorrect or low quality cable can increase the risk of crosstalk

Answer 178

mismatch in the data checksum, indicating data corruption during transmission

Answer 179

packs smaller than minimum allowed sign, usually less than 64 bytes

Answer 180

central reference point in an STP-enabled network

Answer 181

network segmentation issues where devices on different VLANs unable to communicate as intended - security vulnerabilities

Answer 182

- leads to improper network segmentation, causing devices to fail in communicating with each other

Answer 183

particular part of network limits overall performance, creating a point of congestion - insufficient bandwidth or overloaded network devices

Answer 184

time it takes for data to travel from source to destination

Answer 185

variability in packet arrival times, affecting quality of real-time communications

Answer 186

captures data packets traveling over network, allows for detailed analysis of network traffic

Answer 187

sends ICMP echo requests to target host to test connectivity and measure round-trip time for messages sent to target device

Answer 188

traces path packets take from source to destination, showing each hop along the route

Answer 189

- windows - queries DNS servers to find IP address associated with hostname or to get DNS information about a domain (dig)

Answer 190

- linux - get DNS information about a domain

Answer 191

- linux - command-line packet filter

Answer 192

displays network connections, routing tables, and other network interface stats

Answer 193

displays or configures network configuration of a device - ipconfig = windows - ifconfig = older Linux - ip = modern Linux

Answer 194

displays or modifies IP-to-MAC address translation tables used by arp

Answer 195

network scanning tool that discovers devices and services on a network by sending packets and analyzing responses

Answer 196

- link layer discovery protocol - network discovery protocol used to discover and share information between network devices, used to identify network topology, troubleshoot connectivity issues

Answer 197

tool used to measure performance of network connection by testing upload/download speeds

Answer 198

tool used to trace and identify individual wires or cables within a bundle

Answer 199

verifies integrity and performance of network cables; tests for continuity, signal strength, and wiring faults such as shorts, opens, cross connections - essential for validating new cable installations and diagnosing existing cable issues

Answer 200

hardware device that provides way to access data flowing across network cable - creates copy of data packets

Answer 201

tool used to identify faults in fiber optic cables

Answer 202

displays MAC address table of network switch

Answer 203

show route

Answer 204

show interface

Answer 205

show config

Answer 206

show power

Answer 207

provides for protocol-specific inbound traffic. Reverse proxies can publish applications from the corporate network to the Internet in this way.