Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Network Security 208 > Module 9 > Flashcards

Module 9 Flashcards

1
Q

What are the different types of firewalls?

A

Packet filtering (stateless) firewall
Stateful inspection firewall
Application gateway firewall (proxy firewall)
Next-generation firewall

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What does a packet filtering firewall do?

A

Provides Layer 3 and sometimes Layer 4 filtering

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What does a stateful inspection firewall do?

A

Allows or blocks traffic based on state, port, and protocol

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What does an application gateway firewall do?

A

Filters information at Layers 3,4,5 and 7

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What does a next-generation firewall do?

A

Provides addition services beyond application gateways

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What addition services does a next-generation firewall provide?

A

Integrated intrusion prevention, application awareness and control to see and block risky apps, access to future information feeds, and techniques to address evolving security threats

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Networks that require public access to services will often include..

A

DMZ that the public can access, while strictly blocking access to the inside network

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What do ZPFs use?

A

The concept of zones to provide additional flexibility

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is a zone?

A

A group of one or more interfaces that have similar functions, features, and security requirements

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What does a layered security approach use?

A

Firewalls and other security measures to provide security at different functional layers of the network

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is one benefit of using a next-generation firewall rather than a stateful firewall?

A

Integrated use of an intrusion prevention system (IPS)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Which three layers of the OSI model include information that is commonly inspected by a stateful firewall?

A

Layer 3, Layer 4, and Layer 5

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Which statement is a characteristic of a packet filtering firewall?

A

They are susceptible to IP spoofing

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Which type of firewall is supported by most routers and is the easiest to implement?

A

Packet filtering firewall

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Which type of traffic is usually blocked when implementing a demilitarized zone?

A

Traffic originating from the DMZ network and traveling to the private network

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What are two characteristics of an application gateway firewall?

A

Analyzes traffic at Layers 3,4,5, and 7 of the OSI model and performs most filtering and firewall control in software

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Which type of firewall generally has a low impact on network performance?

A

Stateless firewall

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Which type of firewall is commonly part of a router firewall and allows or blocks traffic based on Layer 3 or 4 information?

A

Packet filtering firewall

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

How does a firewall handle traffic that is originating from the DMZ network and traveling to a private network?

A

Traffic is usually blocked when it is originating from the DMZ network and traveling to a private network

20
Q

Which two protocols are stateless and do not generate connection information needed to build a state table?

A

UDP and ICMP

21
Q

What are two benefits of implementing a firewall in a network?

A

A firewall will reduce security management complexity and will sanitize protocol flow

22
Q

When implementing a ZPF, which statement describes a zone?

A

A zone is a group of one or more interfaces that have similar functions or features

23
Q

What system is resistant to network attacks?

A

Firewalls

24
Q

The only transit point between internal and external networks

A

The firewall is the transit point

25
Q

Why are firewalls the only transit point between internal and external networks?

A

All traffic flows through the firewall

26
Q

What enforces the access control policy?

A

Firewall enforces it

27
Q

Firewalls prevents the exposure of… (benefit)

A

Sensitive hosts, resources, and applications to untrusted users

28
Q

Firewalls sanitize protocol flow, which prevents what? (benefit)

A

Exploitation of protocol flaws

29
Q

Firewalls block malicious data from? (benefit)

A

Servers and clients

30
Q

How do firewalls reduce security management complexity? (benefit)

A

They off-load most of the network access control to a few firewalls in the network

31
Q

What happens when a firewall is misconfigured? (vulnerability)

A

It can become a single point of failure

32
Q

Can the data from many applications be passed over firewalls securely? (vunerability)

A

No

33
Q

How might users searching for ways around the firewall effect the network? (vulnerability)

A

Exposes the network to potential attacks

34
Q

Can network performance slow down due to firewalls? (vulnerability)

A

Yes

35
Q

What might happen with unauthorized traffic and a firewall? (vulnerability)

A

Can be tunneled or hidden as legitimate traffic through the firewall

36
Q

What do packet filtering firewall do?

A

Use a simple policy table look-up that filter traffic based on specific criteria

37
Q

What do stateful firewalls do?

A

Provide stateful packet filtering by using connection information maintained in a state table, also analyzes traffic at Layer 4 and 5

38
Q

What do application gateway firewalls do?

A

It connects to a proxy server when a client needs access to a remote server

39
Q

Where is most of the firewall control and filtering done with an application gateway firewall?

A

In the software

40
Q

Which firewall goes beyond stateful firewalls?

A

Next-generation (NGFW)

41
Q

What do NGFW provide?

A
  • Integrated intrusion prevention
  • Application awareness and control to see and block risky apps
  • Upgrade paths to include future information feeds
  • Techniques to address evolving security threats
42
Q

Host-based (server and personal) firewall, Transparent firewall, and Hybrid firewall are methods of what?

A

Implementing firewalls

43
Q

Host-based (server and personal) firewall

A

A PC or server with firewall software running on it

44
Q

Transparent firewall

A

Filters traffic between a pair of bridged interfaces

45
Q

Hybrid firewall

A

A combination of the various firewall types
Ex. Application inspection firewall combines a stateful firewall with an application gateway firewall

46
Q

What has low impact on network performance? (benefit)

A

Packet filters

47
Q

Packet filters are? (benefit)

A

Easy to implement and are supported by most routers

Network Security 208 (23 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions