Chapter 6 Flashcards
Isabella is a security support manager for a large enterprise. In a recent meeting, she was asked which of the standard networking devices already present on the network could be configured to supplement the specific network security hardware devices that were recently purchased. Which of these standard networking devices would Isabella recommend?
A. router
B. hub
C. virtual private network
D. SIEM device
A. router
Ximena noticed that Sofia had created a network bridge on her new laptop between the unsecured wireless network and the organization’s secure intranet. Ximena explained to Sofia the problem associated with setting up the bridge. What did Ximena tell Sofia?
A. A bridge will block packets between two different types of networks.
B. A bridge cannot be used on any Internet connection.
C. A bridge would block packets from reaching the Internet.
D. A bridge could permit access to the secure wired network from the unsecured wireless network
D. A bridge could permit access to the secure wired network from the unsecured wireless network
Which of these would NOT be a filtering mechanism found in a firewall ACL rule?
A. source address
B. direction
C. date
D. protocol
C. date
Which of the following devices can identify the application that send packets and then make decisions about filtering based on it?
A. Internet content filter
B. application-based firewall
C. reverse proxy
D. web security gateway
B. application-based firewall
Which function does an Internet content filter NOT perform?
A. intrusion detection
B. URL filtering
C. malware inspection
D. content inspection
A. intrusion detection
How does network address translation (NAT) improve security?
A. It filters based on protocol.
B. It discards unsolicited packets.
C. It masks the IP address of the NAT device.
D. NATs do not improve security.
B. It discards unsolicited packets.
Francisco was asked by a student intern to explain the danger of a MAC flooding attack on a switch. What would Francisco say?
A. Once the MAC address table is full the switch functions like a network hub.
B. A MAC flooding attack with filter to the local host computer’s MAC-to-IP address tables and prevent these hosts from reaching the network.
C. In a defense of a MAC flooding attack network routers will freeze and not permit any incoming traffic.
D. A MAC flooding attack will prevent load balances from identifying the correct VIP of the servers.
A. Once the MAC address table is full the switch functions like a network hub.
Which device is easiest for an attacker to take advantage of to capture and analyze packets?
A. router
B. hub
C. switch
D. load balancer
B. hub (enables mulitople devices or connections to a computer)
Sebastian was explaining to his supervisor why the enterprise needed to implement port security. His supervisor asked what security action a flood guard could do when a MAC flooding attack occurred. Which of the following was NOT an answer that was given by Sebastian?
A. Ignore the new MAC addresses while allowing normal traffic from the single pre-approved MAC address
B. Cause the device to enter a fail-open mode.
C. Record new MAC addresses up to a specific limit
D. Block the port entirely
Cause the device to enter a fail-open mode. (allows the network access to the back-end servers)
Which statement regarding a demilitarized zone (DMZ) is NOT true?
A. It can be configured to have one or two firewalls.
B. It typically includes an email or web server.
C. It provides an extra degree of security.
D. It contains servers that are used only by internal network users.
It contains servers that are used only by internal network users.
Which statement about network address translation (NAT) is true?
A. It substitutes MAC addresses for IP addresses.
B. It can be stateful or stateless.
C. It can be found only on core routers.
D. It removes private addresses when the packet leaves the network.
It removes private addresses when the packet leaves the network.
Which of these is NOT used in scheduling a load balancer?
A. The IP address of the destination packet
B. Data within the application message itself
C. Round-robin
D. Affinity
A. The IP address of the destination packet
In which of the following configurations are all the load balancers always active?
A. Active-active
B. Active-passive
C. Passive-active-passive
D. Active-load-passive-load
A. Active-active
Which device intercepts internal user requests and then processes those requests on behalf of the users?
A. Forward proxy server
B. Reverse proxy server
C. Host detection server
D. Intrusion prevention device
A. Forward proxy server
Raul was asked to configure the VPN to preserve bandwidth. Which configuration would he choose?
A. Split tunnel
B. Full tunnel
C. Narrow tunnel
D. Wide tunnel
A. Split tunnel
