Network Security Focused Improvement

Question 1

A ……..? is a device necessary for sending and receiving data. ……? allow computers to transport digital information over analog lines, such as phone or cable lines. Types of …..? include; cable …..?, DSL ……?, and satellite …..?.

(Just one word)

Answer 1

Modems

Question 2

A ……? is a point of connection between two or more networks that forwards data packets between networks. To have internet in your home, you need an internet …..? that connects the networks on the internet to the network of your home.
You can access the internet’s network either through a wired Ethernet port of via Wi-Fi.

(One word)

Answer 2

Router

Question 3

A ….? is used to connect devices in a specific network and allows them to communicate efficiently within the network. A ….? is a more complex version of a hub, in that ….? have the capability to add security measures and function far more intelligently, sending traffic directly from the sender to the receiver without the other devices being aware of the communication.

Answer 3

Switch

Question 4

A ….? is similar to a router in that it connects two or more networks. The difference is that the router analyzes data packets to determine where to send the packet next, whereas a …..? simply forwards the data to the next network without analysis.

(One word)

Answer 4

bridge

Question 5

A ….? is a device that strengthens, replicates, regenerates signals that are weakened during transmission (for example because of distance)

Answer 5

Repeater

Question 6

A range extender is a from of ….? that takes a distroted wifi signal and transmits it to the formally Dead Zone.

Dead Zone = Area without wifi/internet

(One word)

Answer 6

Repeater

Question 7

A …? connects the router to the network, takes the data packets from the router, and sends them to all the devices in the network. Example is a USB …?

Answer 7

Hub

Question 8

Also, the network cable in a ….? topology is a shared communications medium, meaning that all computers attached to the network will receive any and all traffic sent on the network.

What kind of Topology?

Answer 8

Bus topology

Question 9

Which topology is known as the Hub-and-Spoke topology?

Answer 9

Star topology.

Question 10

The topology may be either a …..?, where every node has access to all other nodes, or a ….? network, where each node is only able to connect to a subset of the other nodes.

(Two terms)

Answer 10

Full mesh

Partial mesh

Question 11

Unlike other topologies such as bus, ring, or star, ….? topologies are not necessarily constructed using physical network cables. The nodes may connect using Wi-Fi or radio signals or by virtual links such as virtual private networks (VPNs).

Answer 11

Mesh

Question 12

Network Commands

Internet control message protocol ICMP, it typically related to what network command?

Answer 12

ping

Question 13

Network Commands

….? is one of the most basic tools for testing connectivity to other hosts. It sends an internet control message protocol (ICMP) echo request to a host and listens for the reply. If a reply is received, it will display the time it took and the time to live (TTL) left.

Answer 13

ping

Question 14

Network Commands

……? & …..? allow a user to manage accounts and devices remotely. The main difference between the two is that ….? is encrypted, and thus all data is secure from eavesdropping, while … is unencrypted.

Answer 14

telnet & SSH (secure shell)

SSH secure shell is encrypted

Telnet is unencrypted

Question 15

……? displays TCP/IP packets and other network packets that are being transmitted over the network system. It is a form of protocol analyzer (sometimes called a sniffer)

Answer 15

tcpdump

Question 16

Network Commands

It is commonly used to determine what is deployed on a network for vulnerability analysis, security scans, and related activities.

What command is this?

Answer 16

nmap

Question 17

Network Commands

……..? scans networks to see what it can find in terms of hosts and open ports (including well-known ones for many applications).

Answer 17

nmap

Question 18

…..? displays information about a user or users on a remote system, including things such as last log-in time and username. It is primarily used in Linux.

Answer 18

Finger

Question 19

Network Commands

…..? transfers a file from either a client to a server or from a server to a client using UDP (user datagram protocol) instead of TCP, and so it is usually used on reliable (local) networks.

Answer 19

TFTP (trivial file transfer protocol)

Question 20

Network Commands

………? are used to trace the route an IP packet takes to a destination.

Answer 20

Traceroute and tracert

Question 21

Network Commands

It can be useful in determining where a ping fails, troubleshooting performance issues, and other aspects regarding connectivity.

Which network command is this?

Answer 21

Traceroute and tracert

Question 22

Network Commands

……….? is similar to traceroute or tracert in that it displays the path taken by a packet from its source to its destination.…….? is useful because it can be used by any user instead of needing superuser privileges. It is primarily used in Linux.

(One word)

Answer 22

Tracepath

Question 23

Network Commands

…..? provides the user with the IP, subnet mask, and default gateway for each network adapter by default with the /all option information, such as MAC address, DHCP status, and lease information.

Which network command is this?

Answer 23

Ipconfig (internet protocol configuration)

Question 24

Network Commands

Similar to ipconfig, ……? is used to configure the kernel network interfaces. It is implemented at the time of booting to configure the necessary interfaces.

Answer 24

ifconfig

Question 25

Network Commands

Once the interfaces are configured, it is used for debugging or tuning the system. It is primarily used in Linux.

Answer 25

ifconfig

Question 26

……? displays the IP to physical (MAC) address mappings for hosts that have been discovered in the …. cache.

Answer 26

ARP (Address Resolution Protocol)

Question 27

Network Commands

……? displays information about active ports and their state and can be useful in troubleshooting and capacity

Answer 27

Netstat (network statistics)

Question 28

…..? displays information for displaying DNS information and troubleshooting DNS problems. It is useful in displaying names to IP address mappings.

Answer 28

Nslookup (name server lookup)

Question 29

……? is a command used to query the DNS name servers. It is helpful in troubleshooting DNS problems. It is also used for lookups and will display answers from the query. It is a replacement for nslookup.

Answer 29

Dig (domain information groper)

Question 30

What us a replacement to nslookup?

Answer 30

dig

Question 31

……? is a tool most often used to look up who owns a domain or block of IP addresses on the internet, including name, email address, and physical address.

Answer 31

Whois

Question 32

…? can be used to display the current route tables on a host. ….? can also be used to add or remove routes.

Answer 32

Route

Question 33

0.0.0.0 means the …….?, where the router sends things if it is not otherwise defined in the routing table

Answer 33

default gateway

Question 34

……..? command is used to securely copy files between servers, leveraging SSH (secure shell) for authentication and encryption.

Answer 34

SCP (Secure Copy Protocol)

Question 35

…… copies the file from one host to another host. The data is unencrypted. If encryption is needed, FTPS uses SSL/TLS (Secure Sockets Layer, replaced by Transport Layer Security; the same encryption used in https).

Answer 35

FTP (file transfer protocol)

Question 36

What does the address resolution protocol (ARP) cache map?

IP addresses to network destinations

IP addresses to MAC addresses

MAC addresses to interfaces

MAC addresses to ICMP

Answer 36

IP addresses to MAC addresses

Question 37

To combat these problems you need to take an ….? defense approach to network security. That means you will use multiple tools and methods together in an overlapping manner to create rings or layers of security.

Answer 37

in-depth

Question 38

Virus Response

The response plan should first help contain the damage from the attack, which may involve …..? computers or …..? network connections, and then work to remove the threat and clean up the damage.

Answer 38

quarantining

severing

Question 39

What is a good defense against Zero-Day attacks?

Answer 39

IPS Intrusion Prevention System

Question 40

(BYOD) stands for?

Answer 40

bring your own device

Question 41

A terminal that has no internal microprocessor and thus no processing power independent of its host computer.

Answer 41

Dumb terminal

Question 42

proxy servers that could act as a middleman, reading and parsing the traffic payload, and then forwarding it on to the intended destination if the payload was safe. This behavior was later incorporated into firewalls to provide a deeper level of inspection. Firewalls with this ability are commonly called …..? , or …..? because application is the seventh layer of the OSI model.

Answer 42

application-aware firewalls

Layer-7 firewalls

Question 43

This feature allows a firewall to identify traffic as conversational and automatically create temporary firewall rules to permit the response traffic to flow back to the sender. In this way, instead of maintaining a multitude of rules, in a firewall with …..? , you only need to create a firewall rule that allows the communication to begin.

Answer 43

stateful inspection (firewall)

Question 44

Copper-based wiring, such as …… cabling, is susceptible to electronic sniffing or listening devices because the electrons flowing through the cables create a perceptible electromagnetic field (EMF)

Answer 44

CAT6

CAT6a

Question 45

Untagged mode =

Tagging mode =

Answer 45

Untagged mode = Access mode

Tagging mode = Trunk mode

Question 46

Trunk mode attack would happen on what OSI layer?

(Attacks on ethernet switches.)

Answer 46

Data link, layer 2.

Question 47

ARP poisoning is a …..? type of attack, also know as ….?

Answer 47

Spoofing

Man-in-the-middle

Question 48

IEEE Standards

802.11 or more (but still 11)

Is wireless or wired?

Answer 48

Wireless

Question 49

IEEE Standards

802.3 (or more but still .3)

Is wired or wireless?

Answer 49

Wired

Question 50

Many …..? attacks use features within the ICMP, such as “ping.”

Answer 50

Denial of Service DoS

Question 51

What is end-to-end encryption?

Certificate authorities establish static routes for two systems to communicate.

Temporary VPN is established to protect all data communications.

Data is encrypted on the sender’s system and only the recipient is able to decrypt it.

Data is encrypted with a private pre-shared key and cannot be decrypted by the sender.

Answer 51

Data is encrypted on the sender’s system and only the recipient is able to decrypt it.

Question 52

A company provides access to employees’ tax and personal information via a public-facing web portal.

What should the company implement to encrypt employees’ web access to this information?

Transport layer security (TLS)

Network intrusion detection system (NIDS)

Advanced encryption standard (AES)

Two-factor authentication (2FA)

Answer 52

Transport layer security (TLS)

Question 53

Which network topology is being implemented when each node connects to exactly two other nodes, forming a single continuous pathway for signals through each node?

Star

Full mesh

Ring

Bus

Answer 53

Ring

Question 54

What type of medium is commonly used within a 1000 Mbps Ethernet network?

CAT 5

CAT5e

Coax

Wireless

Answer 54

CAT5e

Question 55

Which command should be used to manually enter the default gateway for a computer?

route

ipconfig

arp

netstat

Answer 55

route

Question 56

Which command produces the following output?

Non-authoritative answer:
Name: www.google.com
Address: 172.217.11.132

dig

nslookup

whois

nmap

Answer 56

nslookup

Question 57

Which device is used to organize network cables as they run between switches and other network devices?

Jack

Hub

Patch panel

Router

Answer 57

Patch Panel

Question 58

Which network device is used to connect two or more network segments by performing OSI layer 3 functions like packet-forwarding?

Router

Repeater

Wire

Switch

Answer 58

Router

Question 59

Which device is responsible for implementing network address translation (NAT)?

Modem

Router

NIC

Switch

Answer 59

Router

Question 60

Which device could be used to send commands to the mainframe for remote execution in early mainframe installations?

Distributed screens

Dumb terminals

Execution displays

Command receivers

Answer 60

Dumb terminals

Question 61

…….? which ensures that even if one session key is compromised, that compromised key will only affect data exchanged in that encryption session, not in any past or future sessions.

Answer 61

perfect forward secrecy (PFS),

Question 62

Update to 802.11ac
Rebranded to Wi-Fi 6
Adds support for 6 GHz frequency range
Support for approximately 1–10 Gbps

Is the top wireless standard since 2019, most modern still in 2023.

Which standard from IEEE?

Answer 62

802.11ax

Question 63

Update to power over Ethernet (PoE) to support up to 100W devices

2018 IEEE most recent wired standard.

Answer 63

802.3bt

Question 64

Another use case is when a company currently uses services in one cloud provider but another cloud provider excels or provides cheaper services in a particular area, for example, machine learning or data warehousing.

This is an example of ….?

Answer 64

Multi Cloud

Question 65

…..? : A connector that supports two pairs of wires (four total); typically used in telephones.

Answer 65

RJ11

Question 66

…….?: This is an end connector typically used with Ethernet cables and supports four pairs (eight wires).

Answer 66

RJ45

Question 67

……?: Is the only cable that references 55 meters.

Which data transfer is 55gbps.

Which cable?

Answer 67

CAT6

Question 68

…..? Cable references 100 meter at 100Mbps.

Which cable?

Answer 68

CAT5

Question 69

……? are used to connect two computing devices of the same type directly to each other. In computers, this is accomplished via their network interface controllers (NIC) or switches.

Answer 69

Crossover cables

Question 70

three principles: …..? which limits access; ….? , which enables you to trust the information; and …..?, which ensures that you have access to the information.

Answer 70

confidentiality, which limits access

integrity, which enables you to trust the information

availability, which ensures that you have access to the information.

Question 71

Single-mode fiber optics cables are more expensive but single-mode carries higher bandwidth 50 times the distance of Multimode fiber optic Cables.