Chapter 19 Terms and Topics

Question 1

What is the purpose of an ACL?

Answer 1

To manage which traffic can access the network.

Question 2

An authentication mechanism that provides protection for secure network access.

Answer 2

IEEE 802.1x

Question 3

Where not all traffic is routed via the VPN. Allows multiple connection paths, some via a protected route.

Answer 3

Split Tunnel VPN

Question 4

Routes all traffic over the VPN, providing protection to all networking traffic.

Answer 4

Full Tunnel VPN

Question 5

Security tool that helps protect web applications by filtering and monitoring HTTP traffic between a web application and the internet.

Answer 5

WAF [Web Application Firewall]

Question 6

Network infrastructure that separates public and private functions into two distinct areas.

Answer 6

Screen Subnet

Question 7

What types of servers are placed within a screened subnet?

Answer 7

Web servers, remote access servers, and external email servers to name a few.

Question 8

What is the purpose of a BPDU?

Answer 8

To detect loops in network topologies. It contains information regarding ports, switches, port priority and addresses.

Question 9

What functions does IPSec perform?

Answer 9

Encrypt application layer data. Provide security for routers sending routing data across the public internet. Provides authentication without encryption and protect network data.

Question 10

TCP Port 20 for active transfers and Port 990 for implicit connections is used by

Answer 10

FTPS

Question 11

Set of technologies that work on a network to control traffic and ensure the performance of critical applications with limited network capacity.

Answer 11

QoS

Question 12

Network data that flows within an enterprise network.

Answer 12

east-west traffic

Question 13

Data flowing between the enterprise network or data center and the outside of the network.

Answer 13

north-south traffic

Question 14

Operates forward requests to servers based on a variety of parameters.

Answer 14

Forward Proxy

Question 15

Sits behind the firewall in a private network and forwards clients requests to the appropriate backend server.

Answer 15

Reverse Proxy

Question 16

Hardware device that allows network traffic to flow between two end-points in a network without interruption.

Answer 16

TAP [Test Access point]

Question 17

A network security device that monitors incoming and outgoing network traffic and decides whether to allow or block specific traffic based on a defined set of security rules.

Answer 17

Firewall

Question 18

An information security system that provides a single point of protection against threats.

Answer 18

UTM [Unified Threat Management]

Question 19

Network security device that combines traditional firewall capabilities with other network device filtering functions.

Answer 19

NGFW

Question 20

A method of mapping an IP address space into another by modifying network address information in the IP header of packets while they are in transit across a traffic routing device. It works by selecting gateways that sit between two local networks: the internal network and outside network. It reduces the need for IPv4 public addresses and hides private network address ranges.

Answer 20

NAT [Network Address Translation]

Question 21

An extension of NAT that permits multiple devise on a LAN to be mapped to a single public IP address to conserve IP addresses.

Answer 21

PAT [Port Address Translation]

Question 22

A network that has the same functionality as the Internet for users but lies completely inside the trusted area of a network and is under the security control of the system and network administrators.

Answer 22

Intranet

Question 23

Extension of a selected portion of a company’s intranet to external partners.

Answer 23

Extranet

Question 24

A security measure that restrict unauthorized users and devices from accessing a corporate or private network.

Answer 24

NAC [Network Access Control]

Question 25

Code is stored on the host machine for activation and use at time of connection.

Answer 25

Agent-based NAC

Question 26

The code resides on the network and is deployed to memory for use in a machine requesting connections.

Answer 26

Agentless NAC

Question 27

Microsoft technology that controls network access of a computer based on its health.

Answer 27

NAP [Network Access Protection]

Question 28

Technology by Cisco for controlling network admissions.

Answer 28

Cisco NAC [Network Admission Control]

Question 29

Has TLS replaced SSL?

Answer 29

For the most part, yes. The term SSL will continue to be used for quite some time even though it’s referring to TLS.

Question 30

Compare and contrast dynamic learning, static learning and sticky learning port security

Answer 30

Dynamic learning allows the switch to learn MAC addresses when they connect. Static Learning is when a specific MAC address is assigned to a port. Sticky learning allows multiple devices to a port, but also stores the information in memory that persists through reboots.

Question 31

A technique used to prevent network loops and associated outages.

Answer 31

Loop Prevention

Question 32

An IT security process and technology that checks and analyzes the integrity of critical assets for signs of tampering or corruption.

Answer 32

Integrity Monitoring

Question 33

Process of sending multiple virtual local area networks over a single physical link or interface.

Answer 33

VLAN trunking

Question 34

The current version of the HTML protocol, which was developed to handle the modern web content of audio and video as well as to enhance the ability of a browser to function without add ins.

Answer 34

HTML5

Question 35

An intermediary device responsible for funneling traffic through firewalls using a supervised secure channel.

Answer 35

Jump Server

Question 36

Takes requests from a client system and forwards them to the destination server on behave of the client. Can be used to filter out undesirable traffic and prevent employees from accessing potentially hostile websites.

Answer 36

Proxy Server

Question 37

Scanning system that uses AI to detect intrusions and malicious traffic.

Answer 37

Heuristic-based scanning

Question 38

Uses a database of signatures for known vulnerabilities.

Answer 38

Signature-based scanning

Question 39

What is the purpose of an HSM?

Answer 39

To manage or store encryption keys.

Question 40

Having a security perimeter around the network.

Answer 40

Castle-and-moat mode

Question 41

A security module centered on the belief that you should not trust any request without certifying authentication and authorization.

Answer 41

Zero Trust Mode

Question 42

What is debsums command used for?

Answer 42

To scan for to config files and make sure their integrity are intact on the Linux OS.

Question 43

What is the sfc /scannow command used for?

Answer 43

To scan for file integrity in Windows OS.

Question 44

A logical implementation of a LAN and allows computers connected to different physical networks to act and communicate as if they were on the same network.

Answer 44

VLAN

Question 45

How do you configure VLANS?

Answer 45

By using a switch port.

Question 46

A mechanism that limits the lifespan or lifetime of data in a computer or network.

Answer 46

TTL [Time To Live]

Question 47

An access control method used to prevent unauthorized network access.

Answer 47

MAC Filtering

Question 48

When a single host is in communication to one server

Answer 48

Affinity-base Scheduling

Question 49

A device that distributes network or application traffic across a number of servers.

Answer 49

Load Balancer

Question 50

All servers get a request that is distributed evenly amongst them.

Answer 50

Round Robin

Question 51

If there is more than one DHCP server on the network, which DHCP server does the client use?

Answer 51

The one that reaches the client first.

Question 52

An Ethernet MAC bridges standard that includes bridging, Spanning Tree Protocol, and other details.

Answer 52

IEEE 802.1d

Question 53

A networking standard that supports virtual local area networking (VLANs) on an IEEE 802.3 Ethernet network

Answer 53

IEEE 802.1Q

Question 54

Provides rapid Spanning Tree reconfiguration capability for MAC bridges.

Answer 54

IEEE 802.1w