Ch6 The Basic LAN

Question 1

___ filter and forward data based on MAC addresses

Answer 1

switches

Question 2

MAC addresses are part of layer ___ of the network

Answer 2

2

Question 3

a ___ involves splitting a Domain and assigning the parts to different ports

Answer 3

VLAN

Question 4

switches are generally equipped with ___ guarding, which mitigate against the danger of ___

Answer 4

flood; bridge loops

Question 5

___ Protocol was developed to prevent bridge loops, but must be enabled in the ___ interface

Answer 5

Spanning Tree Protocol (STP); switch

Question 6

___ filter and forward data based on IP Addresses

Answer 6

routers

Question 7

___ could also be called layer 3 switches

Answer 7

routers

Question 8

a router is the interface between different ___

Answer 8

network ID’s

Question 9

a router connecting a LAN to the Internet is called a ___

Answer 9

Gateway router

Question 10

because a router assigns private IP addresses to all the devices on a LAN, it will always be running ___

Answer 10

Network Address Translation (NAT)

Question 11

because a gateway router is interfacing with the Internet, it will have a ___

Answer 11

firewall

Question 12

in a LAN, computers are connected to create a ___

Answer 12

Broadcast Domain

Question 13

two or more LAN’s connected form a ___

Answer 13

Wide Area Network (WAN)

Question 14

several LAN’s and WAN’s connected within a city form a ___

Answer 14

Metropolitan Area Network (MAN)

Question 15

the protocol underlying both the internet and LAN’s is ___

Answer 15

TCP/IP

Question 16

when a LAN has two routers, one facing the internet and the other interfacing the rest of the network, the space between them is called a ___

Answer 16

Demilitarized Zone (DMZ)

Question 17

a Wireless Access Point (WAP) assigns an ___ to every device (cellphone, laptop, etc.) connected to it

Answer 17

Service Set Identifier (SSID)

Question 18

an ___ network is completely isolated from the outside world

Answer 18

Air-Gapped

Question 19

the foundation of most protocols, originally designed for Dial-Up connections but still used extensively is ___

Answer 19

Point to Point Protocol (PPP)

Question 20

the ___ protocol, originally an extension to PPP that just does authentication and has several versions

Answer 20

Extensible Authentication Protocol (EAP)

Question 21

the EAP protocol ___ hashes passwords, and is identical to Microsoft’s MSCHAP

Answer 21

EAP-MD5

Question 22

the EAP protocol ___ uses pre-determined symmetric keys

Answer 22

EAP-PSK

Question 23

the EAP protocol ___ requires server and client certificates, allowing it to use more modern encryption

Answer 23

EAP-TLS

Question 24

the EAP protocol ___ uses the TLS encryption, but only the Server needs a certificate

Answer 24

EAP-TTLS

Question 25

firewall settings can broadly be divided into ___ and ___

Answer 25

Stateful; Stateless

Question 26

firewall settings are stored in an ___

Answer 26

Access Control List

Question 27

in a ___ Proxy, the proxy forwards requests on behalf of the Client, and more refined filtering and caching of data is achieved

Answer 27

Forward

Question 28

a ___ Proxy protects the Client, but requires no setup

Answer 28

Transparent

Question 29

a ___ Proxy is situated outside the internet connection but still behind a firewall with a special VPN called an ___ leading back to the Client, allowing the Client to appear to be, for instance, in another country

Answer 29

Modern Forward; Encrypted Tunnel

Question 30

a ___ Proxy hides and protects the Server rather than the Client

Answer 30

Reverse

Question 31

sometimes when network intrusion is suspected a ___ will be created, emulating the server and logging all keystrokes and ports used

Answer 31

Honeypot

Question 32

___ emulates a machine on a LAN, but if you copy a file using it the file never leaves the LAN

Answer 32

Remote Desktop

Question 33

using a ___ you can emulate a machine on a remote LAN be assigned a IP address and copy files to your machine as if you were connected via ethernet

Answer 33

Virtual Private Network

Question 34

a VPN connects two ___ via a ___

Answer 34

Endpoints; VPN Tunnel

Question 35

in order to speed up internet access on a VPN, ___ is used

Answer 35

Split Tunneling

Question 36

the earliest VPN Tunnel protocol used, which has no real encryption, was ____, and uses TCP port ___

Answer 36

Point to Point Tunneling Protocol (PPTP); 1723

Question 37

a proprietary Cisco VPN Tunnel protocol which uses IPsec encryption is called ___ and uses UDP ports ___

Answer 37

Layer 2 Tunneling Protocol (L2TP); 500 & 4500

Question 38

it is possible to use ___ for both VPN Tunneling and encryption, which is very fast and works particularly well with IPv6

Answer 38

Ipsec

Question 39

a VPN protocol often used within a web browser that uses TLS encryption is called ___, and uses TCP port ___

Answer 39

Secure Sockets Layer/Transport Layer Security (SSL/TLS); 443

Question 40

___ is an open standard protocol for VPN, which uses TCP port ___ but can easily be changed

Answer 40

OpenVPN; 1194

Question 41

IPsec can be done either with just an ___ added to the original IP address for integrity checking (“transport mode”), or within an ___ which assignes a whole new IP address (“tunnel mode”)

Answer 41

Authentication Header; Encapsulating Security Payload (ESP)

Question 42

IPsec uses the ___ protocol to handle initial authentication, key exchange, certificates, etc…

Answer 42

Internet Security Agreement Key Management Protocol (ISAKMP)

Question 43

a NIPS uses 4 criteria to detect intrusions:

Answer 43

packet behavior/anomalies; signatures; rule-based; heuristic

Question 44

NID/NIP systems use a ___ to record all network traffic, and ___ to see what’s happening on all the ports

Answer 44

network tap; port mirroring

Question 45

when configuring NID/NIP systems, ___ are typically out of band, and ___ in band

Answer 45

IDS; IPS

Question 46

NID/NIP systems use ___ to gather data and ___ to look for patterns

Answer 46

collectors; correlation engines

Question 47

a ___ system collects and analyzes network traffic data

Answer 47

Security Information and Event Management (SIEM)

Question 48

a SIEM system aggregated data using time ___, event ___ and ___ of tables

Answer 48

synchronization; de-duplication; normalization

Question 49

data logs are maintained according to the principle of ___

Answer 49

Write Once Read Many (WORM)

Question 50

SIEM systems report on correlations through ___ and ___

Answer 50

Alerts; Triggers

Question 51

a honeypot would be located in the ___ of the network

Answer 51

DMZ