Network

Question 1

Used to explain network communications between a host and remote device over LAN or WAN

Answer 1

OSI Model

Question 2

Layer of OSI Model represent the actual network cables and radio waves used to carry date over network

Answer 2

Physical Layer

Question 3

A data carried over a network to Physical layer

Answer 3

Bits

Question 4

Describes how a connection is established, maintained and transferred over the physical layer and uses physical addressing

MAC Addresses

Answer 4

Data Link Layer

Question 5

Its a group of bits in the data link layer

Answer 5

Frames

Question 6

Uses logical address to route or switch information and between host, the network and the internetworks

Answer 6

Network Layer

Question 7

At network layer the frames are taken and group. An example of this are the IP addresses.

Answer 7

Packets

Question 8

Manages and ensures transmission of the packets occurs from a host to a designation using either TCP or UDP

Answer 8

Transport layer

Question 9

Manages the establishment, termination and synchronization of a session over the network

Answer 9

Session Layer

Question 10

Translate the information into a format that the sender and receiver both understand

Answer 10

Presentaion Layer

Question 11

Layer from which the message is created, formed and originated. It consist of high level protocols like HTTP, SMTP and FTP

Answer 11

Application Layer

Question 12

It is the combine evolution of hubs and bridges. It improves the data transfer and security through the intelligent use of MAC Addresses being able to figure out where a device is and only sending information out that particular port of the switch and ignoring the rest.

Answer 12

Switch

Question 13

Attempt to overwhelmed the limited switch memory set aside to store the MAC address for each port and this is known as the content addressable memory or CAM table

Answer 13

MAC Flooding

Question 14

Occurs when an attacker masks their own MAC address to pretend they have the MAC address of another device

Answer 14

MAC Spoofing

Question 15

It is a man in the middle (MitM) attack that allows the attacker to intercept the communication between network devices. The forge the responses advertise that the correct MAC address for both IP addressess, belongin to the router and workstation, is the attacker’s MAC address ( MAC Spoofing). Mac spoofing is often combine with this attack.

Answer 15

ARP Spoofing/ ARP Poinsoning

Question 16

Occurs when an attacker attempts to gain physical access.

Answer 16

Physical tampering

Question 17

It operates at layer lll
Used to connect two or more networks to form an internetwork
It rely on a packets IP Addresses to determine the proper destination
Once on the network, it conducts an ARP request to find final destination

Answer 17

Routers

Question 18

It can be configure on router’s interface to control the flow of traffic into or put of a
Certain part of the network.

It is an ordered set of rules that a router uses to decide where to permit or deny traffic based upon given characteristics like its source or destination IP address the ports associated with it and the application.

Answer 18

Access Control List

Question 19

It is used to trick a router’s ACL

Answer 19

IP Spoofing

Question 20

Focuses on providing controlled access to publicly available servers that are hosted within your organization network

Answer 20

De-Militarized Zone DMZ

Question 21

Can be created to provide addtional protection for some servers

Answer 21

Sub zones

Question 22

Specialized type of DMZ that is created for your partner organization to access overa wide area network

Answer 22

Extranet

Question 23

Used when only one company is involved

Answer 23

Intranet

Question 24

Any host that accepts inbound connections from the internet

Answer 24

Internet-facing host

Question 25

A segment isolated from the rest of a private network by one or more firewalls that accepts connections from the internet over designated ports

Answer 25

Demilitarized Zone DMZ

Question 26

Host or services in the DMZ which are not configured with any services that run on the local network

Answer 26

Bastion Host

Question 27

Used to configure device in the DMZ. A hardened server that provides access to other host within the DMZ. Administrator connects to it and it connects to the hose in the DMZ

Answer 27

Jumpbox

Question 28

Security technique in which a devices are scanned to determine its current state prior to being allowed access onto given network

Answer 28

Network Access Control

Question 29

A NAC solution piece of software that is installed on the device requesting access to the network

Answer 29

Persistent Agents

Question 30

A NAC solution that uses a piece of software that scans the device remotely or is installed and subsequently removed after the scan

Answer 30

Non-Persistent Agents

Question 31

Standard Access control mechanism used in port-based NAC

Answer 31

IEEE 802.1x

Question 32

This adds a layer of separation to networks without requiring to purchase additional switches that have to be configured and installed on the network. It is implemented to segment the network, reduce collisions, organize the network,boost performance and increase security

Answer 32

Vlans Virtual Local Area Network

Question 33

Attacker configures their device to pretend it is a switch and uses it to negotiate a trunk link to break out of a VLAN

Answer 33

Switch spoofing

Question 34

Attacker adds an additional VLAN tag to create an outer and inner tag

Answer 34

Double Tagging

Question 35

Acts of creating subnetworks logically through the manipulation of IP addresses. It compartmentalized networks to more efficiently use the IP address space that is given.

Answer 35

Subnetting

Question 36

Process of changing an IP address while it. Transits acrooss a router. It helps hide network IP from attackers.

Answer 36

Network Address Translation

Question 37

Router Keeps track of request from internal host by assigning them random high number ports for each request.

Answer 37

Port Address Translation

Question 38

Term used to describe drvices that provide voice communication to users

Answer 38

Telephony

Question 39

A device that could modulate digital information into an analog signal for transmission over a standard dial-up phone line.

Answer 39

Modem

Question 40

An attacker starts dialing random phone numbers to see if any modem would answer on the other side

Answer 40

War dialing

Question 41

Internal phone system used in large organization

Answer 41

Public Branch Exchange PBX

Question 42

Digital phone service provided by software or hardware devices over a data network

Answer 42

(Voice Over Internet Protocol) VoIP