networking2

Question 1

Linux stores passwords in the ____ file in encrypted format.
a. /etc/pass c. /etc/passwd
b. /root/passwd d. /system/password

Answer 1

/etc/passwd

Question 2

Public-Key Infrastructure (PKI) must be used for ____ authentication.
a. Kerberos c. RADIUS
b. 802.1x Wi-Fi d. certificate-based

Answer 2

certificate-based

Question 3

In ____________________-based access controls, access is granted based on a set of rules specified by the central authority.

Answer 3

ANS: rule

Question 4

___________ is the act of confirming the identity of a potential user.

Answer 4

ANS: Authentication

Question 5

With ____________________ authentication, the firewall enables the authenticated user to access the desired resources for a specific period of time.

Answer 5

ANS: client

Question 6

____________________ IP address mappings work best because some TACACS+ systems use the source IP address to create the encryption key.

Answer 6

ANS: Static

Question 7

The ____________________ password system, which is a feature of the Linux operating system that enables the secure storage of passwords, stores them in another file that has restricted access.

Answer 7

ANS: shadow

Question 8

MATCHING CHAPTER 3

Question 9

A firewall is designed to prevent all attackers, viruses, and would-be intruders from entering a computer or computer network. T/F

Answer 9

F

Question 10

Mobile devices such as laptops, PDAs, and smartphones blur the perimeter boundary. T/F

Answer 10

T

Question 11

A properly configured firewall only allows authorized connection attempts to the ports on the network it protects.
T/F

Answer 11

T

Question 12

A packet-filtering firewall installed on a TCP/IP-based network typically functions at the TCP level. T/F

Answer 12

F

Question 13

Application-layer gateways can control the way applications inside the network access external networks by setting up proxy services. T/F

Answer 13

T

Question 14

Firewalls provide ____ services by examining packet headers and allowing traffic that conforms to estalished rules to continue.
a. packet filtering c. application proxy
b. NAT d. TCP/IP

Answer 14

a. packet filtering

Question 15

Firewalls can be used to host ____ to reduce server load and improve Web-site performance.
a. logging c. VPN
b. shielding hosts d. cached data

Answer 15

d. cached data

Question 16

A firewall may also help prevent some Trojan horses from leveraging the local network through unauthorized service ports called ____.
a. back doors c. perimeters
b. apPlication proxies d. content locks

Answer 16

a. back doors

Question 17

Network perimeters may be blurred by ____.
a. VPNs c. Web sites
b. intranets d. desktop computers

Answer 17

a. VPNs

Question 18

A ____ firewall enables you to log passing traffic, protecting the whole network at one time.
a. stateful c. perimeter
b. stateless d. DMZ

Answer 18

c. perimeter

Question 19

A network that needs to connect to the Internet might have a ____ host and a service network.
a. walled c. packet
b. mail d. bastion

Answer 19

d. bastion

Question 20

Ports numbers range from 0 to ____.
a. 1024 c. 65,535
b. 3999 d. 786,568

Answer 20

c. 65,535

Question 21

The combination of a sender’s full address (network address plus port) and receiver’s address (network address plus port) makes up a ____.
a. socket c. bastion
b. packet d. DMZ

Answer 21

a. socket

Question 22

A firewall can act as a(n) ____ server that makes high-level application connections on behalf of internal hosts and other machines.
a. proxy c. HTTP
b. forward d. outbound

Answer 22

a. proxy

Question 23

____ are commonly used to connect two companies networks over the Internet in a site-to-site configuration.
a. Bastion hosts c. Proxy servers
b. VPNs d. Stateful proxies

Answer 23

b. VPNs

Question 24

In the OSI model, level 1 is the ____ layer.
a. physical c. transport
b. data link d. application

Answer 24

a. physical

Question 25

Application gateways function at the ____ layer of the OSI model.
a. presentation c. network
b. transport d. data link

Answer 25

a. presentation

Question 26

Packet-filtering firewalls examine every incoming packet _____ and can selectively filter packets.
a. transport c. header
b. session d. data

Answer 26

c. header

Question 27

A ____ contains the source’s IP and port as well as the destination’s IP and port, and it also provides information on the total time in seconds, the time remaining in seconds, and the protocol used (UDP or TCP).
a. state table c. datagram
b. packet header d. TCP table

Answer 27

a. state table

Question 28

____ breaks a message into numbered segments so that it can be transmitted. It then reassembles the message when it reaches the destination computer.
a. TCP/IP c. IP filtering
b. UDP d. TCP filtering

Answer 28

b. UDP

Question 29

To someone on the Internet or another outside network, it appears that all information is coming from a single computer when ____ is used.
a. PAT c. VPN
b. NAT d. IETF

Answer 29

a. PAT

Question 30

____ firewalls can be used to perform load balancing.
a. Application gateway c. Stateless
b. Stateful d. NAT

Answer 30

a. Application gateway

Question 31

Most firewalls fall into the ____ category.
a. application gateway c. MAC layer
b. packet-filter d. hybrid

Answer 31

d. hybrid

Question 32

Third-generation, stateful inspection firewalls monitor network connections between internal and external systems using ____.
a. rules sets c. state tables
b. stateless protocols d. SQL databases

Answer 32

c. state tables

Question 33

When the ____ architectural approach is used, the bastion host contains two NICs (network interface cards) rather than one, as in the bastion host configuration.
a. screened subnet c. packet-filtering router\
b. screened host d. dual-homed host

Answer 33

d. dual-homed host

Question 34

A(n) ____________________ is an extended network that shares part of an organization’s network with third parties.

Answer 34

ANS: extranet

Question 35

Port numbers come in two flavors: well-known ports and ____________________ ports.

Answer 35

ANS: ephemeral

Question 36

The OSI networking model has ____________________ layers.

Answer 36

ANS:
seven
7

Question 37

____________________ inspection blocks packets that are sent from an external computer that does not have a currently active connection to an internal computer.

Answer 37

ANS: Stateful

Question 38

“____________________” refers to the era of technology a firewall evolved in.

Answer 38

ANS: Generation

Question 39

MATCHING CHAPTER 4