Examcompass Notes Flashcards
What layer do Hubs and Repeaters operate at?
Layer 1 (Physical)
What layer is responsible for opening, closing, and maintaining connections
Layer 5 (Session)
Where does Authentication and Authorization take place?
Layer 5 (Session)
Where does data format translation, compression, and encryption/decryption take place.
Layer 6 (Presentation)
Layer 2 PDU
Frame
Layer 3 PDU
Packet
UDP PDU
Datagram
TCP PDU
Segment
This layer adds header info for Destination Port, Source Port, Sequence Number, and Error Correction
Layer 4 (Transport)
This layer adds header info for Source and Destination IP address
Layer 3 (Network)
Three Way Handshake
1.SYN
2. SYN/ACK
3. ACK
MPLS
- Labels are “pushed” onto packets on the way in and “popped” off on the way out
2.Supports IP Packets and Ethernet Frames
mGRE
- Multipoint Generic Routing Encapsulation
- Dynamic / On demand connection (Mesh VPN)
- Remote sites communicate directly to each other.
SD-WAN
- Communicates directly to the cloud
- Application Centric
Which technology uses telephone lines / Copper
DSL Broadband
Which technology uses cable television / coaxial
Cable Broadband
This provides businesses with a dedicated, point to point, always on connection. (WAN Link)
Leased Line
This technology replaces physical hardware with virtual hardware
NFV (Network Functions Virtualization)
NAS
- Network Attached Storage
- File level access (Change the whole file)
SAN
- Storage Area Network
- Block level access
RG-6
- Coaxial
- Long cable runs
- Cable/Satellite television, cable modems
RG-59
- Coaxial
- Short cable runs
- CCTV / Analog video
Straight Through Cable
- Most common cable
- Same wiring standard in both sides
- Connect two dissimilar devices
Crossover Cable
- Pin 1 to Pin 3
Pin 2 to pin 6 - Reverses transmit + receive signal
- Connect two similar devices
What fiber uses LED as a light source
Multi mode
What fiber uses Lasers as a light source
Single mode
Multi mode distance
Up to 2 km
Single mode distance
Up to 100 km
This technology was replaced by SFP
GBIC (Gigabit Interface Converter)
This technology allows multiple signals to travel over a single strand of fiber
Wavelength Division Multiplexing
Up to 4 signals on one strand of fiber
CWDM
Up to 160 signals on one strand of fiber
DWDM
This connector is used with cable television + modems
F-Type Connector
How are IP addresses expressed?
1. Hexadecimal
2. Decimal
3. Binary
Decimal
RFC 1918
Describes the concept of private IP addressing
What is WDM?
WDM is Wave Division Multiplexing and it allows multiple signals to travel over the same strand of fiber
What is CWDM?
CWDM is Coarse Wave Division Multiplexing.
It allows 4 different carriers at 4 different wavelengths
What is DWDM
DWDM is Dense Wave Division Multiplexing.
It allows up to 160 signals on one strand of fiber!
IPv6 Local Range
FE80::/10 - FEBF::/10
IPv6 Loop Back
0.0.0.0.0.0.0.1or ::1
What is VLSM?
VLSM is Variable Length Subnet Mask.
It allows networks to be divided into subnets of different sizes, not the same.
Class A Network
0.0.0.0 - 126.255.255.255
Private (Non routable)
Class B Network
127.0.0.0 - 191.255.255.255
Private (Non routable)
Class C Network
192.0.0.0 - 223.255.255.255
Private (Non routable)
Class D Network
224.0.0.0 - 239.255.255.255
Used for Multicasts
Class E Network
240.0.0.0 - 255.255.255.255
Used for research purposes
Teredo
IPv4 to IPv6 transition mechanism with native NAT support
Allows IPv6 hosts to communicate over IPv4 internet without a native connection to an IPv6 network
Miredo
Teredo tunneling software
NDP
Neighbor Discover Protocol
Allows IPv6 routers to advertise their presence
SLAAC
Stateless Address Auto configuration
APIPA for IPv6
SMTP
- TCP Port 25
- Simple Mail Transfer Protocol
- Allows transfer of email between servers
- Allows client to send email to other people over the internet
TFTP
- UDP Port 69
- Trivial FTP
- File transfer between two TCP/IP devices
- No security
POP3
- TCP Port 110
- Allows the retrieval of mail from mail servers
IMAP4
- TCP Port 143
- Replaces POP3
SMB
- TCP Port 445
- Used to share files, directories, and devices over a windows network
Secure IMAP
- TCP Port 993
- SSL/TLS
POP3S
- TCP Port 995
- SSL/TLS
SQL Server
- Port 1433
SQLnet
- Port 1521
MySQL
- Port 3306
SIP
- TCP/UDP 5060 + 5061
- Session Initiation Protocol
- Manages real-time sessions involving voice, video, application sharing, and instant messaging.
SFTP
- TCP Port 22
- Secure FTP
- Extension of the SSH protocol
SNMP
- Simple Network Management Protocol
- SNMP Agent receives requests on UDP Port 161
- SNMP Management Station gets notifications on UDP Port 162
MX Record
Mail Server (Record)
SOA Record
- Start of Authority
- Stores administrative info about a domain or zone
A Record
Resolves a hostname to an IPv4 address
AAAA Record
Resolves a hostname to an IPv6 address
PTR Record
- Resolves an IP address to a hostname
- Used in reverse lookups
- Functionally opposite of A records
TXT Records
- Not used to direct traffic
- Provides outside services with info about the domain
SRV Record
- Specifies a host + port number
- Used to find a specific service on a network
NS Record
- Name Server
- Specifies a list of additional Name Servers in a domain
DNS Hierarchy
- ROOT
- 1st Level Domain (.com)
- 2nd Level Domain (Google.com)
- Subdomain (Mail.Google.com)
- Host / Resource Name (Server1.Mail.Google.com)
Forward Lookup
Returns an IP address from a Domain Name
Reverse Lookup
Returns a Domain Name from an IP address
Iterative + Recursive Lookup
Happens when an IP address is not in the cache and you need to contact the ROOT server
Iterative Lookup
- Every request originates from the client
- Resolving DNS server refers client to the ROOT server
Recursive Lookup
- Resolving Name Server makes requests on the clients behalf
- Shortens the amount of time needed to resolve requests
IaC
- Infrastructure as Code
- Auto deployment + config of hardware using code
RIP
- Routing Info Protocol
- Distance Vector routing protocol
- Interior Gateway
- Does not support VLSM
EIGRP
- Enhanced Interior Gateway Routing Protocol
- Distance Vector routing protocol
- Used in CISCO devices
- Interior Gateway
OSPF
- Open Shortest Path First
- Link State routing protocol
- Interior Gateway
- Supports VLSM
BGP
- Border Gateway Protocl
- Hybrid routing protocol
- External Gateway
LACP
- Link Aggregation Control Protocol
- Combines several physical ports on a switch into one logical channel
POE
802.11af
POE+
802.11at
ARP
- Address Resolution Protocol
- IP to MAC resolution
AUP
Acceptable Use Policy
DLP
Data Loss Prevention
MOU
Memorandum of Understanding
Giant VS Jumbo Frame
- A Giant Frame is too large for the receiving interface, the frame is dropped
- A Jumbo Frame is larger than the standard allows
Runt Frame
A frame smaller than 64 bytes (minimum frame size)
CVE
Common Vulnerabilities and Exposure
Cold Site
- Supplies physical space for your equipment in the event of a disaster
- Has HVAC, Network, and Power capabilities
Warm Site
- Has network equipment at the ready but needs the original data to be transferred to it
Hot Site
A fully functional backup of your site with all important data mirrored to it
FHRP
- First Hop Redundancy Protocol
- Multiple routers are configured with the same IP address (default gateway) in the event one goes down.
VRRP
- Virtual Router Redundancy Protocol
Screened Subnet
A lightly protected subnet outside of the networks firewall
802.1x
- Port based security
- Can’t access network until authenticated
TACACS+ vs RADIUS
RADIUS is mainly a network access protocol while TACACS+ is used for administering devices such as switches and routers
TACACS+
- Device administration
- Full Packet Encryption
- Separates authentication and authorization
- Created by Cisco
RADIUS
- Network Access
- Encrypts only the password in the access request packet
- Combines authentication and authorization
KERBEROS
- Each user assigned a cryptographic key
- Authenticate once, trusted by the entire system
- Mutual Authentication: Client and Server authenticate with each other
- Uses NTP to confirm timestamps of the KERBEROS server and client
DoS
- Denial of Service
- Resource exhaustion is the goal
DNS Poisoning
- MITM attack
- Modify the domain name to a rogue IP address
DHCP Snooping
- Security feature that acts as a firewall between DHCP and an untrusted host
RA Guard
- Router Advertisement Guard
- Block or reject unwanted/rogue IPv6 RAs
Port Isolation
- Create private VLANS
- Device can’t communicate with other devices in the same switch and/or VLAN
- Devices connected to the ports cannot directly communicate with each other
Straight Through / Patch Cable
- Connect workstations to network devices
Crossover Cable
Connect two devices of the same type (PC to PC)
Rollover Cable
Connect a computer terminal to a routers console port
EMI Shielding
Protects data from outside interference and eavesdropping
STP Shielding
Protects data from crosstalk and EMI
dB
- Measures signal strength
- The lower the better
Spectrum Analyzer
- Diagnostic tool that measures the strength of a wireless signal
Snips
Used for evening out the wires at the end of a cable
Packet Sniffer / Protocol Analyzer
Monitors and examines the contents of network traffic
iPerf
Measures the maximum achievable bandwidth of an IP network
PathPing
Combines ping and tracert
Netstat
Check network statistics
Netstat -r /routeprint
Displays the contents of the routing table
Netstat -b
Displays the names of applications that are accessing the network
tcpdump
Command line packet capture utility
RSSI
- Received Signal Strength Indication
- Measures how well a device can “hear” an AP
EIRP
- Effective Isotropic Radiated Power
- Measure the output of an antenna
CSMA/CA
- Carrier Sense Multiple Access with Collison Avoidance
- Wireless Networks
CSMA/CD
- Carrier Sense Multiple Access with Collision Detection
- Wired Networks
