Domain 6: Networks

Question 1

Permanent Virtual Circuit (PVC)

Answer 1

Connection between endpoints where carrier configs routes, speeds, etc.

Question 2

Switched Virtual Circuit (SVC)

Answer 2

Dynamically configed circuit routes when circuit is used. Less expensive.

Question 3

Layer 2 Forwarding (L2F)

Answer 3

Created by cisco. Tunnels that don’t require encryption. Mostly Dialup. Port 1701

Question 4

IPSEC IKE use

Answer 4

exchanging symmetric key

Question 5

IPSEC AH

Answer 5

Sender authentication & integrity

Question 6

IPsec ESP

Answer 6

“Encrypts the packet.”

Question 7

IPsec Security Association

Answer 7

SA. Agreed-upon symmetric algorithm

Question 8

Bastion hosts

Answer 8

Hardened and permit external access. aka DMZ hosts

Question 9

MAC limiting

Answer 9

Max number of MAC addresses that can be learned on a specific interface or all interface.

Question 10

SPI

Answer 10

Stateful Packet Inspection

Question 11

Clipping level

Answer 11

Level above baseline that generates an alarm

Question 12

IDS/IPS Behavior based detection

Answer 12

Monitoring deviations from baseline

Question 13

IDS/IPS Signature based detection

Answer 13

Monitors based on previously determined signatures

Question 14

IDS/IPS Anomaly-based detection

Answer 14

Behavior based with automated baseline adjustment

Question 15

IDS/IPS Heuristic based detection

Answer 15

Learning system that uses algorithms to make decisions. Can be inaccurate and fast.

Question 16

Yagi antenna

Answer 16

Directional antenna with multiple rods. Can have high directionality and gain.

Question 17

Traffic shaping

Answer 17

Prioritizes packets based on traffic profile.

Question 18

F/FTP & S/FTP

Answer 18

Shielded twisted pair. F is foil. S is braided shield.

Question 19

Baseband

Answer 19

One way at a time. Occupies entire media.

Question 20

Broadband

Answer 20

Multiple signals on single media.