Firewalls Flashcards

1
Q

What is the primary function of a firewall?

A

Screen traffic between two portions of a network.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What are the three types of firewall?

A

Software
Hardware
Embedded

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is a software firewall?

A

It’s a software based firewall that’s run on a host or a server.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is a hardware firewall?

A

A stand alone device installed into the network.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is an embedded firewall?

A

It works as a single function on a single device. It’s one piece of a device that has many different functions. It is built into a router or a unified threat management device.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What are the different firewall methods?

A
Packet Filtering
MAC Filtering
NAT Filtering
Application-layer gateways
Circuit-level gateways
Web Application Firewall
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is packet filtering?

What are the two types?

A

Inspection of each packet passing through. The firewall accepts or rejects based on the firewall rules.

Stateless and Stateful

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is the difference between stateless and stateful packet filtering?

A

Stateless: Accepts/rejects specifically based on firewall rules.

Stateful: Tracks requests that leave through the firewall, and then temporarily opens a port for the return traffic. It inspects the header of each packet received to verify its coming in for the tracked request.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is MAC filtering?

A

Filters outbound traffic based on MAC address

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is NAT filtering?

A

Filters traffic based on ip/port used and TCP or UDP.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is application-layer gateway firewall?

A

An in-depth packet inspection that determines the application the packet is intended for. Resource intensive. Known as a layer 7 firewall because it operates at the application layer.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is a circuit-level gateway firewall?

A

Applies security checks when a TCP or UPD session establishment. Once its cleared at session establishment, it no longer checks packets. Operates at the session layer.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Explain the differences between Explicit Allow, Explicit Deny, and Implicit Deny.

A

Explicit Allow: Whitelist - If you’re on the list, you may pass.

Explicit Deny: Blacklist - If you’re on the list, you may not pass.

Implicit Deny: Anything that does not have a rule, is denied.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What is a Web Application Firewall (WAF)?

A

Firewall installed to protect a server by inspecting traffic sent to/from a web application.

Note: WAF is excellent at preventing XXS or SQL injections.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly