Module H3: Network Layer Header Protocols Flashcards
What protocol connects an IP address to a fixed physical machine address?
arp
An IPv4 address is represented by how many bits?
32
A MAC address is represented by how many bits?
48
What layer are MAC addresses used?
- Layer 1 / Physical
- Layer 2 / Data Link
- Layer 3 / Network
- Layer 4 / Transport
Layer 2 / Data Link
What layer are IP addresses used?
- Layer 1 / Physical
- Layer 2 / Data Link
- Layer 3 / Network
- Layer 4 / Transport
Layer 3 / Network
The ARP table is constantly updating.
- True
- False
True
What is a Man In the Middle Attack also known as?
- Monkey in the Middle
- ARP Spoofing
- Buffer Overflow
- Brute Force Cracking
ARP Spoofing
Packets can be filtered in Wireshark by specifying the protocol in the Display Filter.
True/False
True
What is the opcode for an ARP request?
1
What is the opcode for an ARP reply?
2
What Wireshark display filter would you write to show all ARP requests?
arp.opcode==1
If you wanted to see all ARP packets from the source IP address 192.168.92.10 what filer could you write in Wireshark?
- arp.src.proto_ipv4==192.168.10.92
- arp.src.proto_ipv4==192.168.92.10
- arp.src.proto_ipv6==192.168.92.10
- arp.des.proto_ipv4==192.168.92.10
arp.src.proto_ipv4==192.168.92.10
What is the decimal value of the version field of an IPv4 header?
4
What is the minimum length of an IP header in bytes?
20
In an IPv4 Header, what value is in the protocol field for UDP?
17
In an IPv4 Header, what value is in the protocol field for TCP?
6
How many bytes are in a ICMP header?
8
What is ICMP primarily used for?
- Determines which ports and services are open on a remote system.
- Verifies and Authenticates session activity for remote users.
- Communicate information about network connectivity issues back to the source of the compromised transmission.
- Manages and Configures BIOS settings over a remote connection.
Communicate information about network connectivity issues back to the source of the compromised transmission.
What does MTUs stand for?
maximum transmission unit
What concept allows packets to break down data into serialized chunks to be recreated at the destination.
It also has the advantage of allowing information to cross over more diverse network paths.
- Fragmentation
- Decentralization
- Encapsulation
- Manipulation
Fragmentation
How many bits are needed to represent the default hop limit in IPv6?
8
What IPv6 header field classifies the priority of an IPv6 packet?
- Next Header
- Flow Label
- Version
- Traffic Class
Traffic Class
What is priority 6 in traffic control for IPv6?
interactive traffic
The payload length in IPv6 is a 16-bit signed integer field.
True
False
False (16 bit unsigned integer field)
The Hop limit in IPv6 is the same as what in IPv4?
ttl
What is the byte offset of the “Protocol Type” field in the ARP header?
2
Using the IPv6 header, what is the BPF for the “Payload Length”? Example syntax: tcp[2:2]
ip6[4:2]
What is the start byte of the “Protocol Address Length” field in the ARP header?
5
What is another name for ARP spoofing?
man in the middle attack
What is the Wireshark filter to show all ARP requests?
arp.opcode==1
IPv6 supports fragmentation.
True
False
False
2
What IPv6 header field replaced IPv4 “Options” field?
extensions
What is the Code for an Echo Reply message?
0
What is the Code for a Router Advertisement?
9
What is the value of the More Fragments bit in the IPv4 header?
32
