Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

firewalls > lesson 1 > Flashcards

lesson 1 Flashcards

1
Q

what does a firewall do?

A

-ensures that all communication between a business’ network and the internet conforms to its’ security policy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

reference for security controls best practices

A

-iso 27002

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

principle of least privilege

A

-giving as little access as possible to users, applications, and systems

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

firewall best practices

A
  • principle of least privilege
  • regular risk assessments
  • change management
  • rule cleanup
  • troubleshooting cleanup
  • logging
  • alerting
  • patches, updates, and vulnerabilities
  • secure remote management
  • defer to company policy
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

change management best practices

A
  • changes are evaluated by stakeholders
  • test before implementing
  • have a backout plan
  • document changes
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

static packet filtering

A

-traditional firewall which controls traffic entering or exiting network interfaces

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

static packet filtering implementations

A
  • single host

- at a network gateway

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

static packet filtering evaluates what header information?

A
  • protocol
  • source ip
  • destination ip
  • source tcp/udp port
  • destination tcp/udp port
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

static packet filtering pros and cons

A
  • high performance

- low security as it cannot operate above the network layer (3)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

stateful packet inspection summary

A
  • introduced by check point in 1994
  • looks at a series of packets traveling in or out of a network by tracking the state and characteristics of network connections
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

stateful packet inspection breakdown

A
  • packets belonging to active connections are automatically allowed out of the network
  • can use connection and protocol information to provide security above the networking layer (3)
  • connections are tracked in a state table
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

stateful packet inspection pros and cons

A
  • better security

- requires more resources

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

next generation firewall

A
  • third generation of firewalls
  • usually act as a network gateway
  • can operate at the application layer (7)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

unified threat management (utm)

A

-the concept of having a single gateway device with a multitude of security controls

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

utm features

A
  • intrusion detection system (ids)
  • intrusion prevention system (ips)
  • inline antivirus
  • data loss prevention (dlp)
  • web proxy/web content filtering
  • email filtering
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

web application firewall (waf)

A
  • used to protect web applications
  • inspect http traffic
  • can be considered a reverse proxy
  • prevents: buffer overflows, cross site scripting (xss), sql injection (sqli)
17
Q

zero trust model

A
  • removes the assumption of trust
  • local traffic is monitored and secured the same as external traffic
  • protects against lateral attacks

firewalls (8 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions