Networking

Question 1

What are some examples of network hardware?

Answer 1

Network interface card (NIC), Hub, Switch, Modem, Router, Access point, Bridge / gateway, firewall, patch panel, and CAT cables

Question 2

What is a NIC?

Answer 2

• hardware component, typically a circuit board or chip, installed on a computer so it can connect to a network

Question 3

What is a hub?

Answer 3

The dumb versions of switches
● Message is broadcast to every port on the hub
● Considered obsolete due to inefficiency

Question 4

What is a switch?

Answer 4

Connects multiple devices together and forwards data packets to/from those devices
● Only sends data to the device it is intended for
● Contains memory and knows which node is on which port

Question 5

What is a modem?

Answer 5

Processes signal from internet service provider and interfaces with local network

Question 6

What is a router?

Answer 6

Creates local network, routes service to devices

Question 7

What is an access point?

Answer 7

Allows devices to connect to a network wirelessly, often combined with a router

Question 8

What is a bridge/gateway?

Answer 8

connects multiple sub-networks to create a single, larger network

Question 9

What is a firewall?

Answer 9

Monitors traffic to and from your network. It allows or blocks traffic based on a defined set of security rules

Question 10

What is a patch panel?

Answer 10

Mounted hardware assembly that contains ports used to connect and manage incoming and outgoing LAN cables. Enables flexible physical connectivity into a network and keeps cables organized

Question 11

What is a CAT cable?

Answer 11

Made of unshielded twisted pair (UTP) wire

Question 12

What are the speeds of CAT 1 - CAT 8?

Answer 12

CAT 1 - 1 Mbps
CAT 2 - 4 Mbps
CAT 3 - 10 Mbps / 100m
CAT 4 - 16 Mbps/ 100m
CAT 5 - 100 Mbps / 100m
CAT 5e - 1 Gbps / 100m
CAT 6 - 1 Gbps/ 100m or 10 Gbps/ 55m
CAT 6a - 10 Gbps / 100m
CAT 7 - 10 Gbps
CAT 8 - 40 Gbps

Question 13

What are some network architecture models?

Answer 13

Client-server model, peer-to-peer (P2P), and web server

Question 14

Describe the client-server model

Answer 14

Centralized network where one or more devices, or servers, provide services and resources to other devices, or clients.
● Clients request and receive data from servers which handle processing and storage
● More reliable, secure, and efficient than P2P
● High cost, complex, and require maintenance
● Require specialized hardware and software and depend on the functionality and available of the servers
● Suitable for large-scale, permanent, or formal applications, such as web hosting, email, or database management

Question 15

Describe P2P

Answer 15

Each machine on the network can act as both server and client (like Bitcoin and Tor)
● Easy to setup – minimal hardware and software requirements
● Users control their own data and resources
● Limited performance, reliability, and security
● Suitable for small-scale, temporary, or informal applications (gaming, file sharing, and messaging)

Question 16

Describe web server model

Answer 16

software and hardware that uses HTTP and other protocols to respond to client requests made of the web

Question 17

What are some network topologies?

Answer 17

Bus, star, ring, mesh, tree, point to point

Question 18

Describe a bus topology

Answer 18

A single line of devices connected together by one shared network cable, outdated
● Computers connect to the network by physically tapping into the network cable
● Devices cannot send and receive simultaneously due to collision along single line of communication
● Not secure or private, all computers attached to the network will receive any and all traffic sent on the network
● Inexpensive, easy to install, and difficult to reconfigure
● Failure on the network cable means complete network failure

Question 19

Describe a star (hub and spoke) topology

Answer 19

Composed of a central network device connected to various network devices by individual network cables
● All communication is sent through a central access point
● Most common type of network found in LANs
● Versatile. Cables can be run through a building, making moving and hooking up equipment easier
● Break in comm line only affects a single device
● Failure of switch means complete network failure

Question 20

Describe a ring topology

Answer 20

Connects devices with exactly two neighboring devices
● Doesn’t have to actually look like a ring.
● Data flows in one direction (can be made bidirectional by having 2 connections between each node called a 2 ring topology)
● Reduces collision since everything travels in one direction
● Cheap to install and expand
● Pass tokens. A token is a frame of data transmitted between network points.
● Break in the connection means complete network failure

Question 21

Describe a mesh topology

Answer 21

Connects every device to every other device
● Very high fault tolerance
● Not reasonable at high numbers
● Expensive to add new nodes
● Can establish new connections around failed nodes as needed
● Usually Wi-Fi with multiple routers

Question 22

Describe a tree topology

Answer 22

a variation of the star topology with a hierarchical flow of data
● Multi-point connection and a non-robust topology because if the backbone fails the topology crashes
● Allows the network to get isolated and prioritize from different computers
● Error detection and correction are easy
● High installation cost (due to cabling)
● Adding devices can make reconfiguration difficult

Question 23

Describe point to point topology

Answer 23

A point-to-point network topology is a simple network structure where two networking devices are directly connected to each other through a dedicated communication link. This type of topology is typically used for simple and straightforward communication needs, allowing for direct data transfer between the two devices without the need for any intermediate networking devices or paths.

Question 24

What are some network protocols?

Answer 24

HTTP, TCP/IP, UDP, DHCP, Syslog, ARP

Question 25

Describe the hypertext transfer protocol

Answer 25

HTTP, Runs on top of other layers of the network protocol stack. Used to load web pages using hypertext links

Question 26

Describe the transmission control protocol

Answer 26

TCP - Ensures successful delivery of data and messages

Question 27

Describe the internet protocol

Answer 27

Network interface identification and location addressing

Question 28

Describe dynamic host configuration protocol

Answer 28

Dynamically and automatically assigns an IP address to any device, or node, on a network so it can communicate using IP. Limited to a specific LAN

Question 29

Describe the syslog protocol

Answer 29

Send event data logs to a central location for storage. Logs can be accessed by analysis and reporting software to perform audits, monitoring, troubleshooting, and other essential IT operational tasks.

Question 30

Describe the address resolution protocol

Answer 30

Translates IP addresses to media access control (MAC) addresses and vice versa

Question 31

Define ‘port’

Answer 31

Logical connection. Determines which program or service on a computer or server is going to be used.
● Identified by a unique number 0-65535
● Always associated with an IP Address to identify the device where the port is

Question 32

What are the specs of IPv4?

Answer 32

Four sets of numbers ranging 0-255, separated by periods

Question 33

What are the specs of IPv6?

Answer 33

Eight sets of four hexadecimal digits, separated by colons

Question 34

What are some system ports?

Answer 34

0-1023
■FTP (File Transfer Protocol)
●tcp/20 Data, tcp/21 Control
■SSH (Secure Shell)
●tcp/22 Encrypted
■Telnet (Telecommunications network)
●tcp/23 Non encrypted
■SMPT (Simple Mail Transfer Protocol)
●tcp/25 Send email
■DNS (Domain Name System)
●udp/53 Converts names to IP addresses
■DHCP (Dynamic Host Configuration Protocol)
●udp/67, udp/68 Automated configuration of leased IP addresses
■HTTP (Hypertext Transfer Protocol)
●tcp/80 Web server
●tcp/443 Web server with encryption
■POP3 (Post Office Protocol version 3)
●tcp/110 Basic email reception
■IMAP4 (Internet Message Access Protocol)
●tcp/143 Mailbox management and email reception
■SMB (Server Message Block)
●udp/137 NetBIOS find devices by name, old
●udp/139 NetBIOS set up session for transfer
●tcp/445 Direct connection between devices
■SNMP (Simple Network Management Protocol)
●udp/161 Network queries
●udp/162 Network alerts or traps
■LDAP (Lightweight Directory Access Protocol)
●tcp/389 Query Microsoft Active Directory
■RDP (Remote Desktop Protocol)
●tcp/389 Windows remote sharing
■Syslog Protocol
●udp/514 System logs
●tcp/1468 System logs with confirmed delivery

Question 35

What are some user registered ports?

Answer 35

1024-49151
■ Can be registered by companies and developers for a price
■ Examples: 1102 Adobe, 1416 Novell, 1433 Microsoft SQL Server, 1537 Oracle

Question 36

What are some dynamic or private ports?

Answer 36

49152-65535
■ Client computer assigns temporarily to itself
- Ephemeral ports

Question 37

What are the layers of OSI from bottom up, and a brief summary of what they relate to?

Answer 37

“All People Say They Never Download Porn”
1. Physical - cable media
2. Data link - Physical addressing (MAC addresses)
3. Network - Routing data, logical addressing, fragments packets
4. Transport - End-to-end communication, assembles packets
5. Session - Communication management, Control protocols
6. Presentation - Data format, encryption, SSL, TLS
7. Application - UI, FTP, HTTP, IMAP, SMTP

Question 38

What are the layers of TCP/IP protocol from bottom up?

Answer 38

“Never Ingest Terrible Apples”
1. Network
2. Internet
3. Transport
4. Application

Question 39

Describe IDS

Answer 39

Intrusion detection system Monitors the network to detect threats
● Passive listening
● Works well in tap mode, connected to network to view traffic
● Sends an alert to the administrator about suspicious behavior

Question 40

Describe IPS

Answer 40

Intrusion prevention system– intercepts and blocks threats (acts)
● Must be positioned in in-line mode, actively block malicious traffic
● Nodes use routed cables connected to IPS device to create a choke point
● Invisible on the network

Question 41

Describe UTM

Answer 41

Unified threat management system is a combination of IDS, IPS, next-gen firewall (NGFW), antivirus, VPN, web-filtering, data loss prevention, and anti-malware in a single device or service
● Essentially does all the things

Question 42

What is AAA network security?

Answer 42

Authentication, Authorization, and Accounting

Question 43

Describe Authentication in AAA

Answer 43

the process of confirming a person’s identity
○ Username and password
○ 2-factor authentication
○ Using a 3rd party ACS (access control system) server
○ Biometrics (fingerprint scans, Face ID, retina scans)

Question 44

Describe Authorization in AAA

Answer 44

determine what resources the user can access and the operations that can be performed

Question 45

Describe Accounting in AAA

Answer 45

monitoring and capturing the events done by the user while accessing the network resources (it’s just auditing)