Ch15 Physical Security and Risk

Question 1

A combination of hardware and software that protect an entire cooperate private network from the public network is known as a ____

Answer 1

Network based firewall

Question 2

Host based firewalls are usually___ based

Answer 2

software based

Question 3

What do ACLs do?

Answer 3

Reside on routers and determine by the IP addresses which machines are allowed to use those routers and in what direction/

Question 4

Layer2 security on switches is ____

Answer 4

Port security. Everything is defined by MAC addresses

Question 5

DMZ(demilitarized zone) is used for what?

Answer 5

separates an internal LAN from other untrusted networks. provides an additional layer of security to the LAN as it restricts the ability of hackers to directly access internal servers and data via the Internet.

Question 6

____is when a firewall looks at incoming packets and applies them to a set of rules in the ACL if it passes it gets sent on if it fails it gets discarded.

Answer 6

Packet filtering

Question 7

an_____hides the addresses of all the devices on the internal network by exchanging its IP address for the address of the requesting station.

Answer 7

IP Proxy

Question 8

Forward proxies work on behalf of the ____

Answer 8

client

Question 9

Reverse proxies work on behalf of the

Answer 9

Server

Question 10

___network firewalls that keep track of the various data streams passing through

Answer 10

Stateful

Question 11

___network firewalls that do not monitor the status of the connections passing through it

Answer 11

Stateless

Question 12

What is the advantage of stateless firewalls over stateful firewalls

Answer 12

Uses less memory

Question 13

an_____firewall is a form of firewall that controls input, output and and or access from or by an application

Answer 13

Application

Question 14

____blocks data based on the content rather then the source.

Answer 14

Content filtering

Question 15

What is used to filter email and websites

Answer 15

Content filter

Question 16

Define context awareness

Answer 16

The ability of a firewall to detect different applications, users and devices instead of just an IP address.

Question 17

What are some signature based attacks a firewall can stop?

Answer 17

Viruses, spyware, network attacks, worms and software bugs.

Question 18

What is the function of a IDS?

Answer 18

Monitors and alerts against OS and application exploits.

Question 19

What is the function of a IPS?

Answer 19

Protects against OS and application exploits by blocking the attacks.

Question 20

Vulnerability scanners are used for what?

Answer 20

system scans to determine potential flaws in a networks security.

Question 21

UTM(unified threat management) is what?

Answer 21

Devices that preform multiple security functions within the same appliance.

Question 22

What is a VPN concentrator?

Answer 22

A device that creates remote access for VPNs either for users logging in remotely, or for a large site-to-site VPN.