Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

firewalls > lesson 3 > Flashcards

lesson 3 Flashcards

1
Q

rfc 1918 addresses

A
  • cannot be routed on the internet
  • 10.0.0.0/8
  • 172.16.0.0/12
  • 192.168.0.0/16
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

one to many nat

A
  • called dynamic nat, source nat, or hide nat
  • many computers represented by one ip address
  • only allows connections from the local side of the firewall
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

one to one nat

A
  • called static nat and destination nat
  • used to interconnect two ip networks with incompatible addressing
  • each host has a unique ip address
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

nat issues

A
  • ip addresses within application data wont be translated by nat
  • its’ use has delayed the adoption of ipv6
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

dhcp request process

A
  • dora
  • client broadcasts discover packet to udp port 67
  • server responds with an offer on udp port 68
  • offer can include ip address, subnet mask, lease duration, server ip
  • client sends request to obtain the offered ip address
  • server sends acknowledgement
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

dhcp options

A
  • subnet mask
  • broadcast address
  • router
  • dns server
  • hostname
  • domain name
  • static routes
  • arp cache timeout
  • ntp servers
  • netbios over tcp/ip name server
  • smtp server
  • requested ip address
  • tftp server
  • bootfile name
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

dhcp security issues

A
  • rogue dhcp servers

- dhcp starvation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

rogue dhcp servers

A
  • attacker uses fake dhcp server to assign ip addresses to victims and perform man in the middle attacks
  • dhcp snooping can be implemented on switches to only allow packets from trusted dhcp servers
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

dhcp starvation

A
  • attacker rapidly requests addressing from the dhcp server by changing their mac address each time which causes real requests to be denied
  • use port security on switches to restrict the mac addresses allowed on a physical interface
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

packet filter

A
  • open bsd’s way of filtering tcp/ip traffic, doing nat, normalizing and conditioning tcp/ip traffic, providing bandwidth control, and packet prioritization
  • takes place in the kernel
  • pseudo device (/dev/pf) allows programs to control the packet filer behavior
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

pfsense

A
  • open source firewall and router software based on freebsd

- forked from m0n0wall project in 2004

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

pfsense features

A
  • stateful packet inspection
  • dhcp
  • dns
  • nat
  • vpn server
  • high availability
  • load balancing
  • traffic shaping
  • captive portal
  • ids/ips (intrusion detection/prevention)
  • transparent caching proxy
  • web content filter
  • geoIP blocking
How well did you know this?
1
Not at all
2
3
4
5
Perfectly

firewalls (8 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions