Network Services and Cloud (Chapter 8)

Question 1

Can a DHCP server run with no scope?

Answer 1

No, it must at least have one.

Question 2

Whats the difference between a NAS and SAN?

Answer 2

NAS is a standalone device with its own software to provide file access.
SAN is a collection of servers dedicated to storage and file management.

N is at the end of SAN, meaning its a network of servers

Question 3

What is UTM?

Answer 3

Unified threat management
Security solution that integrates multiple security features, such as firewall, antivirus, intrusion detection, and content filtering, into a single device, most often centralized on one interface.

Question 4

What is PaaS?

Answer 4

Platform as a Service
Provides a platform for developing, running, and managing applications without dealing with the underlying infrastructure

Question 5

What is SaaS?

Answer 5

Software as a Service
Software applications are delivered over the internet on a subscription basis
Users access them via a web browser without managing the underlying infrastructure (ex. Google Docs)

Question 6

What is the highest level of the three cloud computing models?

Answer 6

SaaS. It includes everything in IaaS and PaaS.

Question 7

What is a private cloud?

Answer 7

A company’s individual cloud set up within their own network
Main benefit is security control
Removes the benefit of rapid elasticity/scalability
Example: Microsoft Azure, vSphere

Question 8

What are the 4 main characteristics of cloud computing?

Answer 8

• On-demand self-service
• Broad network access (a variety of devices can use it)
• Resource pooling (provider’s resources are divided up among clients)
• Rapid elasticity (scale up and down as needed)
• Measured/metered service

Question 9

What servers should be placed in a screened subnet?

Answer 9

Any server that needs to be accessed by the outside world
It provides a firewall for that server, then an additional one for the actual intranet.

This is also called a DMZ!

Question 10

What does an administrator need to set up when creating a DNS server?

Answer 10

A zone file

Question 11

When would a DHCP relay agent be needed?

Answer 11

If the server and client are on different subnets

Question 12

What are the differences between CDMA and GSM?

Answer 12

CDMA:
- Uses code division so users share the same frequency band
- More efficient bandwidth usage
- Tied to the carrier, meaning phones are locked to a specific network
- Example: Verizon and Sprint in the U.S.

GSM:
- Uses time and frequency division
- Utilizes SIM cards, allowing easy switching between phones and carriers
- More widely adopted globally
- Example: AT&T and T-Mobile in the U.S

CDMA does not use sim cards

Question 13

What is a hybrid cloud?

Answer 13

Combines public and private clouds

Question 14

What is a public cloud?

Answer 14

Operated by third-party company and gives scalability, reliability, flexibility
On demand–client gets whatever they want

Question 15

What is a cloud’s measured service?

Answer 15

Cloud provider charges the client based service usage

Question 16

What is high availabilty?

Answer 16

Refers to uninterrupted and responsive service
Importance of this varies between companies

Question 17

What are the three main uses for virtual machines?

Answer 17

• Sandbox
  – temp. isolated environment to prevent changes to the physical machine
• Test Development
  – to create and test applications on a different OS
• Application Virtualization
  – to virtualize legacy software in an older OS

Question 18

What is the hypervisor (a.k.a. VMM)?

Answer 18

Software that allows multple operating systems to share the same host
Also manages resource allocation

Key enabler for virtualization

Question 19

What is a type 1 hypervisor?

Answer 19

Machine (usually a server) that doesn’t have an OS and only exists to create VMs directly off its own hardware (great for performance)

Examples include:
VMware ESXi, Microsoft Hyper-V (Hyper-V Server), Citrix XenServer

Also called a bare-metal hypervisor

Question 20

What is a type 2 hypervisor?

Answer 20

Operates on top of an existing OS (host) and has some performance overhead

Exmaples include: VMware Workstation, Oracle VirtualBox, Parallels Desktop (for Mac), and Microsoft Virtual PC.

Question 21

What is client-side virtualization?

Answer 21

Multiple OSs managed on a client machine instead of a server

Question 22

What does virtual desktop infrustructure (VDI) refer to?

Answer 22

The software and hardware needed to create a virtual environment

Question 23

Does a virtual NIC have to be connected to a physical NIC?

Answer 23

No. Virtual networks are possible.

Question 24

What is emulation?

Answer 24

Replication of physical machine requirements done by the hypervisor
Does not relate to the support of multiple OSs, just runs the same as one specific OS

Question 25

Whats the solution to VM attack threats?

Answer 25

Keep both systems updated

Question 26

What is a syslog server?

Answer 26

Centralized logging server that receives messages generated by clients that triggered certain conditions (ex. log in, error)

Based on client-server model

Question 27

What does a web server do?

Answer 27

Configured with web hosting software, it listens for in/outbound requests on port 443

Question 28

What is a domain controller?

Answer 28

Centralized authentication server

Question 29

What is a spam gateway?

Answer 29

Software or virutal appliance that blocks malicious emails from entering the network

Question 30

What is unified threat management (UTM)?

Answer 30

Single device/interface that centralizes security management and replaces a firewall

Generally does:
Packet filtering, intrusion prevention, website blocking, spam blocking

Question 31

What is load balancing?

Answer 31

Multiple servers help balance out work
Often, they are ogranized in groups that handle specific types of requests

Question 32

What does three benefits does load balancing provide?

Answer 32

Performance
Scalability (if cloud)
Reliability

Question 33

What does a proxy server do?

Answer 33

Makes requests on behalf of a client
It can conceal the sender’s identity or act as a filter

Question 34

What is AAA?

Answer 34

Authentication, Authorization, and Accounting
Framework or system used to manage access to network resources and services, ensuring secure and controlled access for users and devices

Question 35

What requires RADIUS?

Answer 35

VPN
It remotely authenticates them when logging in

Question 36

What is SCADA?

Answer 36

Supervisory control and data acquisition
A category of legacy systems that control manufacturing machines and infrastructure settings

Question 37

Whats contained in a DHCP scope (4)?

Answer 37

Subnet mask
Gateway
DNS servers
Lease duration

Question 38

What are two main characteristics of a SAN?

Answer 38

Uses block-level storage
Requires a high-speed connection

Question 39

A SOHO site has an IoT network. Whats the best way to protect the network (all of it) from IoT hacking?

Answer 39

Put the IoT devices in a DMZ (firewall sandwich)

Question 40

What technology imitates hardware without relying on the CPU being able to run the software code directly?

Answer 40

Emulation

Question 41

What is the difference between emulation and virtualization?

Answer 41

Emulation mimics a whole different hardware architecture
Virtualization is for running software built for similar or the same architecture as the host

Question 42

Which of the following refers to using virtual machines as a method of provisioning workstations for corporate users?

SaaS
VDI
IaaS
PaaS

Answer 42

VDI
Same thing as DaaS

Question 43

Which cloud computing concept is BEST described as focusing on the replacement of physical hardware at a customer’s location with cloud-based resources?

PaaS
IaaS
SECaaS
SaaS

Answer 43

IaaS

Question 44

What kind of internet access uses bi-directional data communication via radio frequency channels on a hybrid fiber coaxial (HFC)?

Answer 44

Cable

Question 45

What is AMD’s version of a hypervisor?

Answer 45

AMD-V

Question 46

Two antennas that are able to communicate with eachother without obstructions is using what kind of connection?

Answer 46

Line of sight

Question 47

Which of the following Network Configurations on a Virtual Machine are used to prevent the VM from accessing the Internet, but still allow it to communicate with the other VMs on the Host and the Host Itself?

Private
Internal
LocalHost
External

Answer 47

Internal
Exists within an internal virtual network