Book-Cards-Pt2 - Sheet 1 Flashcards
qtext
answer
The length of time a computer is allowed to use a dynamic Internet Protocol (IP) address provide by a DHCP server is known as a .
Lease time
True/False: A network collision happens when two devices attempt to communicate on the same physical segment at the same time.
TRUE
True/False: A firewall can permit, deny, encrypt, decrypt, and proxy all computer traffic that flows through it.
TRUE
True/False: Firewalls are not usually a combination of hardware and software.
FALSE
Which type of security device or software employs a redirection device known as a honeypot?
Intrusion prevention system
Which type of firewall keeps track of existing connections passing through it?
Stateful
If you wanted to ensure that your firewall could block inflammatory email, which type of service would you look for?
Content filtering
What is a firewall’s list of rules, which it uses to block traffic?
Access control list (ACL)
If you want to allow remote access to 500 users, which type of device is recommended?
A VPN concentrator
What is a security zone that allows public traffic but is isolated from the private network called?
DMZ
Which unsecure protocol uses port 80 by default?
HTTP
What is 192.168 in binary?
11000000.10101
What port number does Secure Shell (SSH) use by default?
22
Logging, notification, and shunning are what types of reactions from what type of security device?
Passive reactions from an IDS
True/False: A demilitarized zone (DMZ) is a network segment that is neither public nor local, but halfway between.
TRUE
You add a new cable to your network. What document do you update?
Wiring schematics
True/False: An intrusion detection system replaces a firewall on your network.
FALSE
True/False: An intrusion detection system (IDS) can detect attacks within encrypted traffic.
FALSE
True/False: An intrusion detection system (IDS) monitors network traffic, looking for signs of an intrusion.
TRUE
192.168.10.0/28 is an example of which kind of notation?
CIDR
Which terminal emulation program is insecure because it does not encrypt any data, including usernames and passwords?
Telnet
Which network topology has the most physical connections per host, which means it will have the least collisions?
Mesh
In a Class C address, a network ID is how many bits?
24
100BaseTF uses what type of cable medium?
Ethernet over fiber
True/False: A multimode fiber-optic cable (MMF) is terminated on a punch-down block.
FALSE
A UTP cable running 1000Mbps can be a maximum distance of .
100 meters
How can you verify that your DMZ is allowing TCP ports through?
Telnet to the ports in question on the DMZ server.
True/False: A dipole is an omnidirectional antenna.
TRUE
True/False: A parabolic is a type of omnidirectional antenna.
FALSE
A network administrator is going to implement a packet filter on a network for Internet connections. What port must be allowed through the firewall for users to connect to secure websites?
443
True/False: A repeater can be used to cache web pages for future retrieval.
FALSE
True/False: A proxy service can be used to cache web pages for future retrieval.
TRUE
What device can measure the time a signal goes down and back a cable?
TDR
What device connects a local area network (LAN) to a T1 circuit?
Channel service unit/data service unit (CSU/DSU)
An OTDR is used to test what?
Fiber
When all routers in an autonomous system agree about the path from one point to another, the network is said to be what?
Converged
Which two protocols allow secure access to a VPN?
PPTP and IPSec
What tool is used to connect an RF-45 to a UTP?
Crimper
What wire pairs connect to a 66-block from the telecommunication company?
25 pair
Implementing policies and procedures that define how corporate information is kept confidential and training employees on these procedures can help prevent what?
Social engineering
At what layer of the Open Systems Interconnect (OSI) model does a router function?
Network
Which TCP/IP well-known port number identifies Simple Mail Transfer Protocol (SMTP)?
25
Which routing protocol uses a next hop as a metric in deciding how to route traffic?
RIP
True/False: 156.144.226.123 is a valid IP address.
TRUE
Which device monitors inbound and outbound network connections in order to identify suspicious activity?
IDS
True/False: The Transport layer converts digital data into electronic signals to be put on a wire.
FALSE
True/False: Internet Protocol Security (IPSec) encrypts data between web browsers and web servers.
FALSE
Which device or software can identify and react to an attack by shutting down a port or dropping certain types of packets?
IPS
True/False: Using Domain Name Service (DNS) will segment a network.
FALSE
True/False: TCP is connection-oriented, and UDP is unreliable.
TRUE
When configuring a wireless access point, what should you considering when selecting a channel?
Select a channel farthest from that of any other AP in the area.
What does SNMP provide?
Automated alerts and reports on network devices.
Your boss tells you to block certain ports on your firewall. What documentation do you need to update?
Policies, procedures, and configurations
You need to provide inter-VLAN communication. What device do you need?
A Layer 3 switch (router).
True/False: Antivirus (AV) software will help protect a computer from hackers.
FALSE
True/False: Antivirus (AV) software will help protect a computer from Trojan horses.
TRUE
A packet-filtering firewall operates at which layers of the OSI model?
Network and Transport
True/False: A packet-filtering firewall operates at the Network and Data Link layers of the OSI model.
FALSE
Which networking topology connects computers via a central device?
Star
True/False: A ring networking topology connects computers via a central hub.
FALSE
True/False: A cable modem selectively forwards data packets.
FALSE
True/False: A bridge can selectively forward data packets.
TRUE
True/False: A bridge is a network device that operates at Layer 2 of the OSI model.
TRUE
True/False: A switch is a network device that operates at Layer 2 of the OSI model.
TRUE
True/False: A hub and a repeater operate at Layer 2 of the OSI model.
FALSE
True/False: A hub and a switch operate at the same layer of the OSI model.
FALSE
True/False: A hub and router operate at the same layer of the OSI model.
FALSE
True/False: A router and a bridge operate at the same layer of the OSI model.
FALSE
What is 01100011.00011010 in decimal?
99.26
A company wants to have an intranet. Where would the intranet web server be located in the network?
In the local area network (LAN), usually behind the firewall to the WAN
True/False: A network administrator wants all computers protected from Trojan horses and worms. Implementing a firewall will accomplish this requirement.
FALSE
HTTPS uses what TCP destination port number?
443
True/False: Virtual local area networks (VLANs) create collision domains.
FALSE
