Networks and Network Security

Question 1

What network protocol is used to determine the MAC address of the next router or device on a path?

Answer 1

Address Resolution Protocol (ARP).

Question 2

Which protocol is used to translate internet domain names into IP addresses?

Answer 2

Domain Name System (DNS).

Question 3

Define encapsulation in the context of network security.

Answer 3

The process of wrapping sensitive data in other data packets to protect information in transit.

Question 4

What is a smurf attack?

Answer 4

A network attack where an attacker sniffs an authorized user’s IP address and floods it with ICMP packets.

Question 5

Describe the role of a forward proxy server.

Answer 5

It regulates and restricts a person’s access to the internet.

Question 6

What type of attack involves intercepting and altering communication between two devices?

Answer 6

On-path attack.

Question 7

How does a reverse proxy server function in network security?

Answer 7

It regulates and restricts the internet’s access to an internal server.

Question 8

What does TCP stand for and what is its purpose?

Answer 8

Transmission Control Protocol; it allows two devices to form a connection and stream data.

Question 9

What is the purpose of a demilitarized zone (DMZ) in network security?

Answer 9

To act as a network perimeter that isolates servers exposed to the internet.

Question 10

Explain the concept of packet sniffing.

Answer 10

The practice of capturing and inspecting data packets across a network.

Question 11

What is an ICMP flood attack?

Answer 11

A DoS attack where an attacker repeatedly sends ICMP request packets to a network server.

Question 12

How can using a VPN protect against packet sniffing?

Answer 12

By encrypting data as it travels across a network.

Question 13

Describe the purpose of port filtering.

Answer 13

To block or allow certain port numbers to control network communication.

Question 14

What is IP spoofing and how does it compromise a network?

Answer 14

Changing the source IP of a data packet to impersonate an authorized system and gain network access.

Question 15

How does a SYN flood attack work?

Answer 15

By simulating a TCP connection and flooding a server with SYN packets, overwhelming it.

Question 16

What type of attack sends an oversized ICMP packet to a server, causing it to crash?

Answer 16

Ping of Death.

Question 17

Define passive packet sniffing.

Answer 17

A type of attack where a malicious actor connects to a network hub and monitors all traffic without altering it.

Question 18

What does a security incident report typically include?

Answer 18

A summary of the incident, type of attack, systems impacted, protection plan, detection methods, response plan, and recovery procedures.

Question 19

How does a firewall help in protecting a network?

Answer 19

By monitoring and filtering incoming and outgoing network traffic based on security rules.

Question 20

What is the purpose of using a controlled zone in network security?

Answer 20

To protect a company’s internal network from an uncontrolled security zone.

Question 21

Explain the concept of a botnet.

Answer 21

A collection of computers infected by malware under the control of a single threat actor.

Question 22

How does network segmentation improve security?

Answer 22

By creating isolated subnets for different departments, limiting access to specific areas of the network.

Question 23

What is the function of network log analysis?

Answer 23

Examining network logs to identify events of interest and detect potential security incidents

Question 24

Why is multi-factor authentication (MFA) important in network security?

Answer 24

It requires users to verify their identity in two or more ways to access a system, enhancing security.

Question 25

It requires users to verify their identity in two or more ways to access a system, enhancing security.

Answer 25

By ensuring all cloud services meet security and compliance requirements, reducing vulnerabilities.