Network Security

Question 1

Penetration Testing

Answer 1

Tests network security by attempting to exploit vulnerabilities.

Question 2

IP Tunnel

Answer 2

Secure VPN connection between two endpoints

Question 3

SPI

Answer 3

Stateful Packet Inspection

Checks incoming packets against outgoing requests

Question 4

Password Guidelines

Answer 4

No dictionary words
Not username - forwards or backwards
Limit login attempts
>= 8 characters
Alphanumeric
Change often

Question 5

TLS

Answer 5

Transport Layer Security
Requires client and server to use certificates to verify identity
Replacement to SSL
Application Layer

Question 6

TTLS

Answer 6

Tunneled Transport Layer Security
Only authentication server is issued a certificate
Client authentication requires a password
Application Layer

Question 7

IPsec

Answer 7

IP Security
Each packet encrypted prior to transmission
Network Layer

Question 8

Signature

Answer 8

AKA Definition

What antivirus software uses to identify viruses

Question 9

NAQC

Answer 9

Network Access Quarantine Control
Resource Kit tool in Windows Server 2003 / 2008
Admins prevent clients from connecting to network with machines that aren’t secure

Question 10

ACL

Answer 10

Access Control List

List of permit and deny statements to control traffic in/out of network interface

Question 11

Technologies firewalls are based on

Answer 11

Packet filtering
Proxy server
Stateful packet filtering

Question 12

DMZ

Answer 12

Demilitarized zone

Isolated area for servers that communicate with the outside world

Question 13

Packet Filtering

Answer 13

Limits packets that can enter the network and what segment they can move to.
DA: fragmented packets can still enter, difficult to implement complex ACLs, not all network services can be filtered

Question 14

Proxy Server

Answer 14

Client uses proxy server to access the server. Uses authentication and policies.
DA: run very slowly, adding services is difficult, proxy server failure = network failure

Question 15

Stateful Firewall

Answer 15

Inbound and outbound data packets are compared to determine if connection should be allowed.

Question 16

IDS

Answer 16

Intrusion Detection System

Monitor inbound and outbound traffic and reports suspicious activity

Question 17

IPS

Answer 17

Intrusion Prevention System

Stops / prevents malicious attacks that it detects in real time

Question 18

HIDS

Answer 18

Host-based Intrusion Detection System

Monitors computer for changes to system file, registry, files, and system logs

Question 19

Web Filter

Answer 19

AKA Content Filter

Uses database of inappropriate websites. Monitors traffic on HTTP and HTTPS

Question 20

Packet Shaper

Answer 20

Prioritizes traffic based on type

Question 21

NGFW

Answer 21

Next-generation Firewall
AKA layer 7 firewall
Combines traditional firewall with other network appliances

Question 22

CIA

Answer 22

Confidentiality
Integrity
Availability
Example: Kerberos

Question 23

AAA

Answer 23

Authentication
Authorization
Accounting
Example: RADIUS or TACAS+

Question 24

RADIUS

Answer 24

Remote Authentication Dial-In Service

Question 25

TACAS+

Answer 25

Terminal Access Controller Access-Control System Plus

Question 26

NAC

Answer 26

Network Access Control

Question 27

UTM

Answer 27

Unified Threat Management
Wide range of security features in one appliance.
Could include: firewall, IDS/IPS, VPN, gateway antivirus/anti-spam, load balancing, content filtering