perimeter defense II

Question 1

a firewall that makes decision by examining information in the IP packet head

Answer 1

packet filtering firewall

stateless

Question 2

a firewall that makes decision about which traffic to allow based on virtual circuits

Answer 2

statefull inspection firewall

Question 3

a firewall that makes decision based on information contained within the data portion of a packet

Answer 3

application firewall

Question 4

this devices stands as a intermediary between a secure network and a private one and is a specific implementation of an application level firewall

Answer 4

proxy server

Question 5

a _____ firewall inspects traffic as it flows between networks

Answer 5

network based

Question 6

a ______ firewall inspects traffic received by a host.

Answer 6

host

Question 7

a packet filtering firewall operates at _____ layer OSI ___

Answer 7

network

3

Question 8

a stateful inspection firewall operates at _____ layer OSI ___

Answer 8

session

5

Question 9

a application layer firewall operates at _____ layer OSI ___

Answer 9

application

7

Question 10

a collection of components that allow administrator to regulate network access on a computer’s compliance with health requirement policies is called

Answer 10

Network access protection (NAP)

Question 11

a statement that reports the client configuration for health requirements.

Answer 11

statement of health

Question 12

the server that is responsible for keeping track of health requirements and verifying that clients meet its requirements before gaining access.

Answer 12

NAP server

Question 13

the ____ server is the connection point for clients to submitting the SoH for validation.

Answer 13

enforcement

Question 14

_______ servers are a set of resources that a non-compliant computer can have limited access

Answer 14

remediation

Question 15

a ______ server control access by leasing address only to computers that meet the health requirement

Answer 15

DHCP enforcement

Question 16

a ______ server can be combined with NAP to allow or deny access based on health compliance

Answer 16

remote desktop gateway

Question 17

software used to monitor and restrict contents delivered across the web to an end user

Answer 17

internet content filter

Question 18

the ability to analyze an manage network traffic based on the application layer protocol

Answer 18

application aware devices

Question 19

a portions of the network that have specific security concerns or requirements

Answer 19

security zones

Question 20

a session based attack that intercept information passing between two communication partners

Answer 20

man in the middle

Question 21

a session based attack that extension of a man in the middle attack where the attackers steals an open and active communication session from a legitimate use

Answer 21

TCP/IP hijacking

Question 22

a session based attack that hijacks a user’s cookies and uses them to take over the session

Answer 22

HTTP hijacking

Question 23

a session based attack that uses a protocol analyzer to capture authentication information going from the client to the server

Answer 23

replay attack

Question 24

a session based attack that makes a connection using black username and passwords

Answer 24

null session

Question 25

a technique that hides the true source of packets

Answer 25

spoofing

Question 26

this is the first VPN protocol

Answer 26

Point to point tunneling

PPTP

Question 27

this VPN technology was developed by cisco

Answer 27

layer 2 forwarding (L2F)

Question 28

the VPN technology is an open standard for secure multi-protocol routing

Answer 28

layer 2 tunneling (L2TP)

Question 29

_____ runs on the NAP server and identifies the client health requirements.

Answer 29

statement of health validator

Question 30

the enforcement server forwards the SoH to the ______ server for validation

Answer 30

NAP

Question 31

what the purpose for remediation servers

Answer 31

to make non-complaint clients compliant

Question 32

a _______ router translates multiple private addresses into the single registered IP address

Answer 32

network address translation

Question 33

NAT routers use ______ to associate a port number with a request for a private host

Answer 33

port address translation