CompTIA A+ (Anki) 4 Flashcards
UTM
Unified Threat Management
__ combines multiple security features
Gives you the ability to control and manage consistent setting across devices like
Router
Firewall
Content filters
You may not be able to configure everything through it, but the devices can at least likely report back to it
UTM
IDS
Intrusion Detection System
_ monitors the network and the systems on it for malicious activity
It monitors for anything out of the ordinary, it learns what the normal traffic tends to look like
The primary configurations are
Netowork based (NIDS)
Host based (HIDS)
IDS
IPS
Intrusion Prevention System
_ is a network security/threat prevention technology
detects and prevents vulnerability exploits
IPS
_ Systems refers to an old, outdated, or unsupported system
Networks can consist of a mix of old and new hardware, software or services
systems tend not to be updated (generally the orignial vendor just doesn’t support it anymore)
can be expensive to maintain
often run proprietary software
may requie specialized programmes to maintain
they are still around because they were usually designed for a very specific purpose and there really isn’t anything else that is suitable to replace it
if its older it could be a security vulnerability
Legacy
_ in ethernet netowork begins with ensuring that every system that needs to communicate has an address and that address is unique
Two systems cannot have the same address otherwise they will not be able to communciate
IP addressing
A _ address is assigned by some kind of entitiy or process and iti is assined automatically
the device requests an address and some kind of service responds and says here you go
Most systems in larger environements have this configuration
dynamic
A _ address is something you manually configure and it does not change
It does not change until you or somebody changes it
static
When it comes to the automatic configuration , the dynamic addresses, there is a service called __
It is a very common service and almost every internal networking environment will use this to handle the large numbers of clients that need addresses
When a client is confiugred to obtain an IP address automatically, then when it boots it issues out what’s known as a discover which is searching for some kind of service somewhere on the network
In most cases it is the server that has this service installed but other devices such as routers can supply the services
Something will respond and say yes, we have the service installed
Once you have that, what you configure is known as a scope and this is a pool of addresses from which clients can draw their configuration
It typically includes the IP address, a subnet mask and other optional values such as the DNS server they should use and the default gateway you should use. The reservation still allows a client to recieve its configuration automatically but they get the same address every time. When you set up a reservation, you set up a particular address to be assigned to the same client which is usually done by configuring the MAC address of that client so that it knows which client is wanting that address
A request is the client saying that I have discovered that there is a server. I see that there is an offer coming back from that server, I will request that address configuration then you will get what is known as a lease which is essentially the time duration for how long its valid. When that expires you go through the process again and get a new address configuration which could be a different address
DHCP
APIPA
Automatic Private IP Addressing
When you are using DHCP, there is an option that you might consider to be a little bit of a fail safe. A DHCP server can go down so if you have clients reqeusting addresses from the server and the server is down then no address is being returned, the client will initalize itself with and address which is called, __
the address is always in the format of 169.254.x.x
the first two values indicate the network
More useful as a diagnostic tool
When you start seeing the address above, you know that there is an issue with DHCP and you can investigate accordingly
APIPA
_ is more of a category than any kind of address assignment
It referes to all the addresses that are able to see each other within the same subnet or the same local area network without having to be routed to a different network
so even if the router went down, all of the systems within that network could still communicate with each other because they’d all be plugged into the same switch
Link Local Address
_ is responsible for automatically assigning the IP address configuration to client systems
Typically includes the subnet mask, default gateway, DNS servers, and other optional values
An alternative to static confugration, static is not very efficient for large environments
It automates IP address configuration so that clients can obtain an IP address automatically and also obatin DNS server automatically
DHCP