Networking

Question 1

MAC Flooding

Answer 1

Attempt to overwhelm the memory on a switch with MAC addresses

Question 2

MAC Spoofing

Answer 2

When an attacker masks their own MAC address to pretend they have the MAC address of another device

Question 3

Routers

Answer 3

Operate at layer 3 : Used to connect two or more networks to form a n internetwork

Question 4

ARP

Answer 4

Address resolution protocol: Connects an IP address to a physical machine

Question 5

ACL

Answer 5

Access Control List: A set of router rules to allow or deny traffic based upon characteristics

Question 6

DMZ

Answer 6

Demilitarized Zone: Accepts connections from the internet over certain ports, these are invisible to the outside network

Question 7

Bastion Hosts

Answer 7

Hosts or servers in the DMZ which are not configured with any services that run o the local network

Question 8

Jumpbox

Answer 8

A hardened server that provides access to other hosts within the DMZ

Question 9

NAC

Answer 9

Network access control: Devices are scanned to determine its current state prior to granting access on a network

Question 10

Persistent agents

Answer 10

software installed on the device requesting access to the network

Question 11

Switch spoofing

Answer 11

Attacker configures their device to pretend it is a switch and uses it to negotiate a trunk link to break out of a VLAN

Question 12

Double tagging

Answer 12

Attacker adds an additional VLAN tag to create an inner and outer tag.

Question 13

NAT

Answer 13

Network access translation: Changing IP addresses while it transits across a router

Question 14

PAT

Answer 14

Port address translation: Router keeps track of requests from internal hosts by assigning them random ports for each request

Question 15

Class A

Answer 15

10.0.0.0 to 10.255.255.255

Question 16

Class B

Answer 16

172.16.0.0 to 172.31.255.255