Expanded_Firewall_Security_Flashcards

Question 1

What is a firewall?

Answer 1

A security tool that monitors incoming and outgoing network traffic based on predefined rules.

Question 2

What are the uses of a firewall?

Answer 2

Prevents unauthorized remote access, indecent content, destructive content, and guarantees security based on protocol/IP.

Question 3

What are the limitations of firewalls?

Answer 3

Cannot stop access to malicious websites, protect against internal threats, or secure already infected systems.

Question 4

What is a DMZ network?

Answer 4

A perimeter network that adds an extra layer of security to protect an internal network from untrusted traffic.

Question 5

What are the benefits of dual firewall DMZ design?

Answer 5

It allows external traffic only to the DMZ and ensures tighter security between the DMZ and internal network.

Question 6

What is a single firewall DMZ design?

Answer 6

Uses three or more network interfaces to separate external, internal, and DMZ networks, controlling traffic flow.

Question 7

What is a reverse proxy server?

Answer 7

Acts on behalf of servers, providing load balancing, caching, and compression, and hides server identities.

Question 8

What is a forward proxy server?

Answer 8

Acts on behalf of clients, hiding their identities and enabling bypassing restrictions or caching content.

Question 9

What is a packet filtering firewall?

Answer 9

Operates at the network layer, allowing or denying packets based on source/destination IP and protocols.

Question 10

What are the advantages of circuit-level firewalls?

Answer 10

They verify TCP connections, hide user identities, and minimally impact network performance.

Question 11

What are the drawbacks of circuit-level firewalls?

Answer 11

Cannot inspect the content of data packets, allowing malware to bypass with legitimate TCP handshakes.

Question 12

What is an application-level firewall?

Answer 12

Controls traffic to/from specific applications, inspecting for vulnerabilities like SQL injections or XSS.

Question 13

What are active application firewalls?

Answer 13

Actively inspect and block malicious requests, preventing attacks like SQL injections.

Question 14

What are passive application firewalls?

Answer 14

Inspect requests but do not block them, similar to intrusion detection systems.

Question 15

What are software firewalls?

Answer 15

Installed on individual devices, providing granular control but requiring significant CPU/RAM resources.

Question 16

What are hardware firewalls?

Answer 16

Physical devices that act as gateways between networks, blocking malicious traffic before reaching endpoints.

Question 17

What are some popular uses of DMZs?

Answer 17

Hosting external-facing services like DNS, FTP, mail, proxy, and web servers while protecting internal networks.

Question 18

What is the purpose of firewall rules?

Answer 18

Define criteria to allow or block traffic based on IPs, ports, and protocols to ensure secure network access.

Question 19

What is the difference between forward and reverse proxies?

Answer 19

Forward proxies hide client identities; reverse proxies hide server identities and optimize server responses.