Kahoot Review

Question 1

Which of the following is NOT a purpose of DHCP snooping?

Answer 1

Enable DHCP and allow a host and client

Question 2

What happens to a route if the administrative distance is 255?

Answer 2

The router will not install the route in the routing table

Question 3

Defense in Depth centers around how many levels of security?

Answer 3

5

Question 4

The most basic countermeasure to preventing DDOS attacks is to allow as little user error as possible.

(True/False)

Answer 4

True

Question 5

What is the wildcard mask for 192.168.200.50/30?

Answer 5

0.0.0.3

Question 6

_____ occurs when your switch sends broadcasts to fill its MAC address table.

Answer 6

Thrashing

Question 7

What command is used to save the running configuration to the start up configuration?

Answer 7

Copy running config startup config

Question 8

What is the range for standard ACLs?

Answer 8

1-99

Question 9

What is the maximum hop count for RIPv1?

Answer 9

15

Question 10

Which command displays neighbor relationships with OSPF?

Question 11

Dynamic routes take precedence over static routes.

(True / False)

Answer 11

False

Question 12

What are two ways to perform Fault Management?

Answer 12

Active and Passive

Question 13

Which of the following is an advantage of Layer 7 load balancing?

Answer 13

Offers smart routing based off of URL

Question 14

Which protocol is widely used in email, IM, VoiP and in HTTPS?

Answer 14

TLS

Question 15

Which layer in the Cisco model is used as a communication point between the access and the core layer?

Answer 15

Distribution Layer

Question 16

What is used by the EIGRP to select and maintain the best route to each remote network?

Answer 16

DUAL

Question 17

What measures the number of routers that a packet must travel through?

Answer 17

Hop count

Question 18

Which of the following is NOT a tier in the Cisco model?

Answer 18

Application Layer

Question 19

Which of the following is NOT a password security best practic e?

Answer 19

Use hints

Question 20

Which of the following is an example of a named ACL?

Answer 20

ip access-list standard ______

Question 21

Which of the following is considered one of the hardest DDoS raids to prevent and recover from?

Answer 21

DNS flood

Question 22

What does Router(config-router)# indicate?

Answer 22

Changes are to be made to the routing protocol

Question 23

Why do system banners exist?

Question 24

How many types of DNS queries are there?

Answer 24

3

Question 25

How do switches remember source hardware address of each frame received on an interface?

Answer 25

MAC address table

Question 26

1+1 = \_\_\_

Answer 26

None of the above

Question 27

What is a protocol suite that authenticates and encrypts packets for secure communication?

Answer 27

IPSec

Question 28

Which of the following is NOT an advantage of static routes?

Question 29

The three-tier hierarchical network model consists of what three layers?

Answer 29

Core, Distribution, Access

Question 30

\_\_\_\_\_ cards are a flash memory storage device that can store both the start-up and running configs, and the Cisco IOS

Answer 30

Compact Flash

Question 31

When a port enters “protect” mode, an error message is displayed. (True / False)

Answer 31

False

Question 32

GRE uses encryption for its tunnel. | (True / False)

Answer 32

False

Question 33

Which of the following is NOT a main layer of Security Controls?

Answer 33

Logical Controls

Question 34

What is a rule based list that filters inbound and outbound traffic?

Answer 34

Access Control List

Question 35

Spanning Tree Protocol prevents layer ___ loops from being formed.

Answer 35

2

Question 36

Which layer in the Cisco model is responsible for transferring heavy amounts of traffic in a reliable and quick way?

Answer 36

Core layer

Question 37

Which layer of the hierarchical network model handles routing, packet filtering and WAN access?

Answer 37

Distribution

Question 38

What is the default encapsulation method used in Cisco tunneling?

Answer 38

Generic Routing Encapsulation (GRE)

Question 39

What is the purpose and goal of fault management?

Question 40

\_\_\_ is when the source and destination port of a frame that reaches the switches is dropped.

Answer 40

Frame filtering

Question 41

\_\_\_\_\_\_\_\_\_ happens when a switch does not find the destination MAC address in its table.

Answer 41

Flooding

Question 42

Which of the following is NOT a disadvantage to NAT?

Question 43

Which command is used to display the startup configuration on a Cisco device?

Answer 43

Show start

Question 44

Which ACL filters traffic on source and destination address and protocol?

Answer 44

Extended ACL

Question 45

Which protocol supports encryption-only and authentication-only configurations?

Answer 45

ESP

Question 46

In the following version number, the .4 represents what: 12.4(25A)

Answer 46

minor release

Question 47

How many modes of operation are there?

Answer 47

3

Question 48

Which character identifies with Privileged Exec Mode?

Answer 48

#

Question 49

HTTP __________ is the practice of creating a network link between two nodes in a network environment.

Answer 49

proxying

Question 50

At what layer does DHCP snooping exist?

Answer 50

2

Question 51

Which of the following protocols is NOT an example of Interior Gateway Protocol?

Answer 51

BGP

Question 52

What mode must you b e in to make any configurations?

Answer 52

global configuration mode

Question 53

Reflexive ACLs are usually placed on the most outward routers of the network. (True / False)

Answer 53

True

Question 54

What is used to save IPv$ addresses by converting private to Public IPs?

Answer 54

NAT

Question 55

Which technology was created with HTTP Connect disadvantages in mind?

Answer 55

MASQUE

Question 56

Physical controls are typically the most complex of the controls. (True / False)

Answer 56

False

Question 57

What is the default administrative distance for EIGRP?

Answer 57

5

Question 58

What protocol is used commonly for web browsers?

Answer 58

SSL

Question 59

Which of these is not a difference between STP and RSTP?

Answer 59

RSTP cannot generate its own Hellos

Question 60

What provides the ability to balance incoming traffic across multiple network resources?

Answer 60

Load balancing

Question 61

What is a minor version release which includes new features and bug fixes?

Answer 61

Throttles

Question 62

Which character identifies with User EXEC mode?

Answer 62

\>

Question 63

A default route is also known as what?

Answer 63

Gateway of last resort

Question 64

What is a command line interface used to allow a Telnet connection to the router?

Question 65

What process ID is used in the added header of GRE when encapsulating?

Answer 65

47

Question 66

Which protocol provides trusted identification and proof that data was not changed?

Answer 66

AUthentication header (AH)

Question 67

Which DNS lookup returns a host 128-bit IPv6 address?

Answer 67

AAAA

Question 68

Which types of attacks use massive amounts of bogus traffic to overwhelm a resource?

Answer 68

Volumetric attacks

Question 69

Which command is used to set a default route?

Answer 69

ip route

Question 70

Which command will bring you to Global configuration mode?

Answer 70

configure terminal

Question 71

PAT is also known as what?

Answer 71

Overloading

Question 72

Which type of accounts are typical business users who don't require special systems or information to do their job?

Answer 72

Standard

Question 73

In reference to flooding, the frame sent out will be _______ to all ports except the source port.

Answer 73

Broadcast

Question 74

What NAT is a constant mapping that allows private IP networks with unregistered IPs to connect to the internet?

Answer 74

Static NAT

Question 75

Which of the following is NOT a key element in develeloping a DoS response plan?

Answer 75

Security guards

Question 76

What are the 3 violation modes when it comes to port security?

Answer 76

Protect, Restrict, Shutdown

Question 77

What happens when a port is configured as a secure port and the maximum numbe rof MAC addresses is reached?

Answer 77

Protect, Restrict, Shutdown

Question 78

Which attack sends a lot of fake UDP packets to the router broadcast address?

Answer 78

Fraggle attack

Question 79

Which of the following is an ongoing cycle of inspecting network traffic for problems?

Answer 79

Fault monitoring

Question 80

Why should PortFast only be used on ports with a single host connected to it?

Answer 80

a bridge loop could occur

Question 81

What hardware is associated with the Access Layer of the Cisco Model?

Answer 81

Access points and Layer 2 switches

Question 82

What message is sent by the router if the datagram has reached the maximum limit of routers that it can travel?

Answer 82

Time exceeded

Question 83

Which attack sends its victim in a continuous loop once it tries to respond?

Answer 83

LAND attack

Question 84

Which of the following is an example of administrative controls?

Answer 84

Minimizing the use of privileged accounts and placing more restrictions

Question 85

According to lecture, what is the largest security vulnerability in a network, and also the hardest to contorl?

Answer 85

Human factor

Question 86

In the following version number, the “12” represents what? 12.4(25a)

Answer 86

Major release

Question 87

Which command enables the OSPF routing protocol?

Answer 87

Router OSPF 1

Question 88

What is the wildcard mask of 200.10.57.98/26?

Answer 88

0.0.0.63

Question 89

Which of the following is not a functional area of Network Management?

Answer 89

Controlling management

Question 90

Which of the following controls access to Netowrk resources to protect a network from unauthorized access?

Answer 90

Security management

Question 91

Which attack relies on a malicious program called Smurf to flood multiple devices with ICMP pings?

Answer 91

Smurf attack

Question 92

Which versions of TLS does Google Chrome use by default?

Answer 92

TLS 1.2, TLS 1.3