ICF - Networking Flashcards
Network Management Station provides five basic functions:
Discover Map Monitor Alert (via text, email, logging) Report (real time and historical data)
Intrusion Detection System
Detects anomalies with aim of catching hackers before they do real damage to a network
Scan, audit, and monitor security infrastructure for signs of attacks in progress
Work by either looking for signatures of known attacks or deviations from normal activity
Placed on network in order to monitor the traffic traversing it
Alerts system administrators an attack may be happening
What is the purpose of network monitoring?
Discover suspicious and unauthorized network and information systems access and activity of AF networks. (Tools used include IDS and SNMP)
Console Access Method
device accessible even if not configured on network. Connected via a cable into the console port. Make sure to keep in a secure room so not just anyone can plug in (physical security)
Telnet and Secure Shell
Telnet
Method for remotely accessing the CLI over a network
Require active networking services and one active interface that is configured
Secure Shell (SSH)
Remote login similar to Telnet, but utilizes more security
Stronger password authentication
Uses encryption when transporting data
Command Line Interface (CLI)
Can be accessed by any of these three: Console, VTY, AUX
User exec mode denoted on CLI by this:
>
Privileged exec mode denoted on CLI by this:
#
Privileged Exec allows for access to what commands?
Privileged EXEC level allows access to all router commands
Configuration*
Management settings
Session = What Protocol Suite?
Telnet FTP SMTP DNS RIP SNMP
Transport = What Protocol Suite?
TCP
&
UDP
Network = What Protocol Suite?
IP
Data Link & Physical = What Protocol Suite?
Ethernet
Token Ring
Frame Relay
ATM
What operates on the Application Layer
FTP Service
What operates on the Transport Layer
Ports
Transparent Data Services
Some Firewalls
