Lesson 5 - Enterprise Network Architecture

Question 1

IP

Answer 1

Internet Protocol
- Network (Internet) layer protocol in the TCP/IP suite providing packet addressing and routing for all higher-level protocols in the suite.

Question 2

VLAN

Answer 2

Virtual Local Area Network
- A logical network segment comprising a broadcast domain established using a feature of managed switches to assign each port a VLAN ID. Even though hosts on two VLANs may be physically connected to the same switch, local traffic is isolated to each VLAN, so they must use a router to communicate.

Question 3

EAP

Answer 3

Extensible Authentication Protocol
- Framework for negotiating authentication methods that enable systems to use hardware-based identifiers, such as fingerprint scanners or smart card readers, for authentication and to establish secure tunnels through which to submit credentials.

Question 4

RADIUS

Answer 4

Remote Authentication Dial-In User Service
- AAA protocol used to manage remote and wireless authentication infrastructures.

Question 5

TAP

Answer 5

Test Access Point
- A hardware device inserted into a cable run to copy frames for analysis.

Question 6

SPAN

Answer 6

Switched Port Analyzer
- Copying ingress and/or egress communications from one or more switch ports to another port. This is used to monitor communications passing over the switch.

Question 7

ICMP

Answer 7

Internet Control Message Protocol
- refers to a network protocol used for error reporting and network diagnostics, but it can also be exploited for attacks like DDoS (Distributed Denial of Service).

Question 8

PAC

Answer 8

Proxy Auto-Configuration
- a JavaScript function that determines whether web browser requests (HTTP, HTTPS, and FTP) go directly to the destination or are forwarded to a web proxy server

Question 9

IDS

Answer 9

Intrusion Detection System
- A security appliance or software that analyzes data from a packet sniffer to identify traffic that violates policies or rules.

Question 10

IPS

Answer 10

Intrusion Prevention System
- A security appliance or software that combines detection capabilities with functions that can actively block attacks.

Question 11

NGFW

Answer 11

Next-Generation Firewall
- Advances in firewall technology, from app awareness, user-based filtering, and intrusion prevention to cloud inspection.

Question 12

UTM

Answer 12

Unified Threat Management
- All-in-one security appliances and agents that combine the functions of a firewall, malware scanner, intrusion detection, vulnerability scanner, data-loss prevention, content filtering, and so on.

Question 13

WAF

Answer 13

Web Application Firewall
- A firewall designed specifically to protect software running on web servers and their back-end databases from code injection and DoS attacks.

Question 14

VPN

Answer 14

Virtual Private Network
- A secure tunnel created between two endpoints connected via an unsecure transport network (typically the Internet).

Question 15

PPTP

Answer 15

Point-to-Point Tunneling Protocol
- Developed by Cisco and Microsoft to support VPNs over PPP and TCP/IP. PPTP is highly vulnerable to password cracking attacks and considered obsolete.

Question 16

TLS VPN

Answer 16

Transport Layer Security VPN
- Virtual private networking solution that uses digital certificates to identify and host and establish secure tunnels for network traffic.

Question 17

AH

Answer 17

Authentication Header
- IPSec protocol that provides authentication for the origin of transmitted data as well as integrity and protection against replay attacks.

Question 18

ESP

Answer 18

Encapsulating Security Payload
- IPSec sub-protocol that enables encryption and authentication of the header and payload of a data packet.

Question 19

IKE

Answer 19

Internet Key Exchange
- Framework for creating a security association (SA) used with IPSec. An SA establishes that two hosts trust one another (authenticate) and agree on secure protocols and cipher suites to use to exchange data.

Question 20

PSK

Answer 20

Pre-Shared Key
- a super-long series of seemingly random letters and numbers generated when a device joins a network through a Wi-Fi access point (AP).

Question 21

NAT

Answer 21

Network Address Translation
- a technique that translates private IP addresses within a network to a single public IP address, enhancing security by hiding internal devices and networks from direct external access.

Question 22

RDP

Answer 22

Remote Desktop Protocol
- Application protocol for operating remote connections to a host using a graphical interface. The protocol sends screen data from the remote host to the client and transfers mouse and keyboard input from the client to the remote host. It uses TCP port 3389.

Question 23

VNC

Answer 23

Virtual Network Computing
- Remote access tool and protocol. VNC is the basis of macOS screen sharing.

Question 24

SSH

Answer 24

Secure Shell
- Application protocol supporting secure tunneling and remote terminal emulation and file copy. SSH runs over TCP port 22.

Question 25

SFTP

Answer 25

Secure File Transfer - a secure network protocol that uses Secure Shell (SSH) encryption to ensure secure and encrypted file transfers between a client and a server, offering a more secure alternative to the traditional File Transfer Protocol (FTP).

Question 26

OOB

Answer 26

Out-of-Band - Accessing the administrative interface of a network appliance using a separate network from the usual data network. This could use a separate VLAN or a different kind of link, such as a dial-up modem.

Question 27

NAC

Answer 27

Network Access Control - a security approach that restricts access to a private network and sensitive resources, ensuring only authorized and compliant users and devices can connect.