Network+ Chapter 15

Question 1

Firewalls are usually a combination of ________ and ________?

p. 529

Answer 1

hardware and software.

Question 2

T or F Firewalls can be placed on top of an existing operating system or be self-contained.

Answer 2

Ture

Question 3

Define network-based firewall?

p. 530

Answer 3

It’s what companies use to protect their private network from public networks.

Question 4

This is a firewall that is on a single PC and will protect that single PC only?

p. 530

Answer 4

host-based firewall

Question 5

T or F Host based Firewalls are normally software based?

p. 530

Answer 5

True

Question 6

What is the first line of Defense for any network that’s connected to the internet?

p. 531

Answer 6

access control lists (ACLs).

Question 7

What is Packet Filtering?

pg 537

Answer 7

Packet Filtering refers to the ability of a router or a firewall to discard packets that don’t meet the right criteria.

Question 8

Which type of filtering do firewalls use?

Pg 537

Answer 8

dynamic packet filtering

Question 9

Why would you implement a IP Proxy?

p 537

Answer 9

to hide all of your internal IP addresses from hackers.

Question 10

The first firewalls were developed and worked at which layer of the OSI Model and were also known as_________?
p. 540

Answer 10

Network layer (Layer 3)
packet-filter firewalls.

Question 11

Define the term zone?

pg 545

Answer 11

Its an individual area of the network that has been configured with a specific trust level.

Question 12

T or F An intrusion detection system cannot detect attacks within encrypted traffic.
p. 548

Answer 12

False

Question 13

T or F An intrusion detection system is the best way to replace a firewall on your network?
p. 548

Answer 13

False

Question 14

What are two ways two ways IDSs can detect attacks or intrusions.
p. 548

Answer 14

misuse-detection IDS

anomaly-detection IDS

Question 15

What is a smart system?

p. 548

Answer 15

it learns on the go by keeping track of and building a history of network activity for norms to which you can compare unusual activity.

Question 16

What are 3 examples of passive responses?

Answer 16

logging,notification,shunning

Question 17

What are 3 examples of Active responses

p. 549

Answer 17

Change network config
Terminating Sessions
deceive the attacker

Question 18

___________is a propriety vulnerability scanning program that requires a license to use commercially yet is the single most popular scanning program in use.
p. 551

Answer 18

Nessus

Question 19

what are 3 things that Network Mapper also known as NMAP can do?

pp. 551-552

Answer 19

Perform port scanning
Identify versions of network services in operation on the network
Identify operating systems

Question 20

What is a VPN concentrator?

p. 552

Answer 20

Its a device that creates remote access for virtual private networks VPNs either for users logging in remotely or for a large site-to-site VPN.

Question 21

___________is a physical security access control system comprising a small space with two sets of interlocking doors, such that the first set of doors must close before the second set opens

Answer 21

mantrap

Question 22

What are the 3 categories that disasters are classified as?

p. 560

Answer 22

Technological disasters (device failures) 
Manmade disasters (arson, terrorism, sabotage) 
Natural disasters (hurricanes, floods, earthquakes)

Question 23

__________is designed to simulate an attack on a system, network, or application.
p. 565

Answer 23

penetration test

Question 24

What are three examples of penetration testing?

Answer 24

Blind Test
Double Blind
Target test

Question 25

____________software runs on one computer to detect abnormalities on that system alone by monitoring applications, system logs, and event logs— not by directly monitoring network traffic.

p. 551

Answer 25

host-based IDS or HIDS