Infrastructure Security Devices Flashcards
What is port security on a switch?
Allows defined number of MAC addresses into port
What is 802.1x?
Requires authentication at the switch (Layer 2)
What is a stateful firewall?
Remembers outbound traffic to dynamically let corresponding inbound traffic in using (L3 - L4)
What is a load balancer?
Distributes load across multiple servers
What are some of the types of load balancer balancing?
Round robin
Least connection
What is CIA?
Confidentiality
Integrity
Availability
What is a proxy server?
Traffic goes through proxy to inspect entire protocol stack, creates/relays new session Rule implementation (i.e content filtering, monitoring)
What is a VPN contentrator?
Endpoint for all VPN connections
What is a NIDS?
Network Intrusion Detection System
Receives copy of traffic
Cannot inspect encrypted traffic
What is a NIPS?
Network Intrusion Prevention System
Directly intercepts traffic
Cannot inspect encrypted traffic
What is HIDS and HIPS?
Host based IDS and IPS
Protects only that system
Advantageous for encrypted network traffic
What is signature based IDS/IPS?
Database of malicious things to look for
Compares traffic to database
What is a behaviour/anaomaly/heuristic based IDS/IPS?
Creates baseline of network activity
What is a protocol analyser?
Packet sniffer, can identify fragmentation, flooding, protocols
What is promiscuous mode?
Functionality on computer to allow an network interfaces traffic to be inspected, accepts frames not identical to NICs MAC address
