LESSON5

Question 1

is the protection of the underlying networking
infrastructure from unauthorized access, misuse, or theft.

Answer 1

Network Security

Question 2

involves creating a secure infrastructure for devices, users, and applications to work in a secure manner.

Answer 2

Network Security

Question 3

Network security combines _______ at the edge and in the network.

Answer 3

multiple layers of defenses

Question 4

Each network security layer implements ________.

Answer 4

policies and controls

Question 5

_______ gain access to network resources, but ________ are blocked from carrying out exploits and threats.

Answer 5

Authorized users ; malicious actors

Question 6

How does network security work?

Answer 6

• Network security combines multiple layers of defenses at the edge and in the network.
• Each network security layer implements policies and controls.
• Authorized users gain access to network resources, but malicious actors are blocked from carrying out exploits and threats.

Question 7

• Is an organization’s set of rules regarding how to handle and protect sensitive data
  (Ps A S R D W Phs)

Answer 7

Physical security
Acceptable use of applications
Safeguarding data
Remote access to the network
Data center
Wireless security
Protecting the Hardware and Software

Question 8

• Malicious programs that have many different capabilities.

Answer 8

Malware

Question 9

Types of Malware ( V W B P R R R T )

Answer 9

Virus
Worm
Botnets
Polymorphic
Ransomware
Remote Administration Tools (RATs)
Rootkits
Trojan

Question 10

Programs that copy themselves throughout a computer or network.

Answer 10

1. Virus –

Question 11

Self-replicating viruses the exploits security vulnerabilities to automatically spread themselves across the computers and networks.

Answer 11

2. Worm –

Question 12

Short for “robot network,” these are networks of infected computers under the control of single attacking parties using command and control servers.

Answer 12

3. Botnets –

Question 13

Is a type of malware with the capacity to “morph” regularly, altering the appearance of the code while retaining the algorithm within.

Answer 13

4. Polymorphic –

Question 14

Is a criminal business model that uses malicious software to hold valuable files, data or information.

Answer 14

5. Ransomware –

Question 15

Software that allows a remote operator to control a system. These tools were originally built for legitimate use, but are now used by bad actors.

Answer 15

6. Remote Administration Tools (RATs) –

Question 16

Programs that provide privileged (root-level) access to a computer. _____ vary and hide themselves in the operating system.

Answer 16

7. Rootkits –

Question 17

Malware disguised in what appears to be legitimate software.

Answer 17

8. Trojan –

Question 18

• The primary method of keeping bad actors out of a network.

Answer 18

Firewalls

Question 19

• Placed between a private LAN and the public Internet.

Answer 19

Firewalls

Question 20

• Can be a hardware device or it can be software.

Answer 20

Firewalls

Question 21

• Can filter packets based on source address, destination address, port numbers, and other criteria.

Answer 21

Firewalls

Question 22

Firewall Topologies (B D D)

Answer 22

1. Bastion host topology
2. Dual-homed bastion
3. Demilitarized zone(DMZ)

Question 23

consists of a packet filtering router that forwards all incoming packets to the firewall software on a bastion host. Through this topology, the firewall is placed between the internet and the internal network segment.
Once the firewall is compromised, there is no impediment for the attacker to access the protected network.

Answer 23

1. Bastion host topology–

Question 24

It has two network adapter cards in it and two IP addresses, one for each network it is connected to.

Answer 24

2. Dual-homed bastion–

Question 25

consists of two packet filtering routers that is most secure firewall solution.

Answer 25

3. Demilitarized zone(DMZ) –

Question 26

-Classify IP packets and filters that enable network administrators to control which routing updates or packets are permitted or denied in or out of a network and provide extra security for the network.

Answer 26

Access Control List

Question 27

PORTS Number (20 -161)

Answer 27

20 TCP UDP 21 TCP 23 TCP UDP 25 TCP 53 TCP UDP 67 and 68 UDP 69 UDP 80 TCP 109 TCP 110 TCP 161 UDP

Question 28

20 TCP UDP

Answer 28

FTP data transfer

Question 29

21 TCP

Answer 29

FTP control (command)

Question 30

23 TCP UDP

Answer 30

Telnet protocol

Question 31

25 TCP

Answer 31

Simple Mail Transfer Protocol (SMTP)

Question 32

53 TCP UDP

Answer 32

Domain Name System (DNS)

Question 33

67 and 68 UDP

Answer 33

Dynamic Host Configuration Protocol (DHCP)

Question 34

69 UDP

Answer 34

Trivial File Transfer Protocol (TFTP)

Question 35

80 TCP

Answer 35

Hypertext Transfer Protocol (HTTP)

Question 36

109 TCP

Answer 36

Post Office Protocol v2 (POP2)

Question 37

110 TCP

Answer 37

Post Office Protocol v3 (POP3)

Question 38

161 UDP

Answer 38

Simple Network Management Protocol (SNMP)