Implementing a Secure Network

Question 1

What is NAT and PAT

Answer 1

Network Address Translation and Port Address Translation

Question 2

What are the pros and cons of NAT

Answer 2

Pros:
A router running NAT allows multiple computers to access the internet without purchasing additional public IP addresses.

NAT hides internal computers from the internet

Con:
Not compatible with IPSEC

Question 3

An advantage of IPSSEC

Answer 3

create VPN tunnels and encrypt with L2TP

Question 4

Layer 2 switch definition

Answer 4

Uses MAC addresses to deliver traffic. Susceptible to ARP attacks.

Question 5

Layer 3 switch definition

Answer 5

Uses IP addresses to deliver traffic. Not susceptible to ARP attacks. Allows administrators to create VLANs

Question 6

what is SCADA

Answer 6

Supervisory Control and Data Acquisition - Used for industrial environments.

Question 7

In terms of Comptia objectives what refers to providing basic separation.

Answer 7

Segregation

Question 8

In terms of Comptia objectives what refers to putting traffic on different segments

Answer 8

Segmentation

Question 9

In terms of Comptia objectives what refers to completely separating systems.

Answer 9

Isolation

Question 10

A metaphor used for physical isolation

Answer 10

airgap

Question 11

A typical method for providing logical seperation

Answer 11

VLAN

Question 12

An effective method of increasing availability and reliability on VOIP data

Answer 12

Use a dedicated VLAN

Question 13

A device that convert data from the format used to one network to the format used on another network

Answer 13

Media Gateway

Question 14

A type of server that is used to forward request for services from clients to improve performance or restrict access to inappropriate web sites by filtering content

Answer 14

Proxy Server

Question 15

What type of proxy uses URL filtering to block employees from visiting inappropriate web sites.

Answer 15

Nontransparent Proxy

Question 16

Type of server that provides load balancing for a web farm. Allows the web server to be located in the private network behind a second firewall

Answer 16

Reverse Proxy

Question 17

Device that provides a single solution by combining multiple security controls

Answer 17

UTM - Unified Threat Management

Question 18

A server that examines all incoming and outgoing email and attempts to reduce risk associated with email.

Answer 18

Mail Gateway

Question 19

Included in mail gateways to examine outgoing email in an attempt to block confidential and sensitive information from leaving the intranet.

Answer 19

DLP - Data Loss Prevention