Perimeter Security

Question 1

Perimeter Security

Answer 1

Security devices focused on the boundary between the LAN and the WAN in your organization’s network

Question 2

Firewalls

Answer 2

Firewalls screen traffic between two portions of a network

Question 3

Types of Firewalls

Answer 3

§ Software
§ Hardware
§ Embedded

Question 4

Packet Filtering

Firewall

Answer 4

§ Inspects each packet passing through the firewall and accepts or rejects it based on the rules
§ Stateless Packet Filtering
§ Stateful packet filtering tracks the requests leaving the network

Question 5

Stateless Packet Filtering

Answer 5

Stateless firewalls are designed to protect networks based on static information such as source and destination

Question 6

Stateful packet filtering

Answer 6

stateful firewalls filter packets based on the full context of a given network connection, stateless firewalls filter packets based on the individual packets themselves

Question 7

NAT Filtering

Answer 7

Filters traffic based upon the ports being utilized and type of connection (TCP or UDP)

Question 8

Circuit-Level gateway

Answer 8

Operates at the session layer and only inspects the traffic during the establishment of the initial session over TCP or UDP

Question 9

Explicit Allow

Answer 9

Traffic is allowed to enter or leave the network because there is an ACL rule that specifically allows it

Question 10

Explicit Deny

Answer 10

Traffic is denied the ability to enter or leave the network because there is an ACL rule that specifically denies it

Question 11

Implicit Deny

Answer 11

Traffic is denied the ability to enter or leave the network because there is no specific rule that allows it

Question 12

Layer 3 Firewall Blocks

Answer 12

IP addresses

Question 13

Layer 4 Firewall Blocks

Answer 13

Ports

Question 14

Web Application Firewall

Answer 14

§ Firewall installed to protect your server by inspecting traffic being sent to a web application
§ A WAF can prevent a XSS or SQL injection

Question 15

Proxy Server

Answer 15

A device that acts as a middle man between a device and a remote server

Question 16

IP Proxy

Answer 16

IP Proxy is used to secure a network by keeping its machines

anonymous during web browsing

Question 17

Caching Proxy

Answer 17

• Attempts to serve client requests by delivering content from itself without actually contacting the remote server
• Disable Proxy Auto-Configuration (PAC) files for security

Question 18

Internet Content Filter

Answer 18

Used in organizations to prevent users from accessing prohibited websites and other content

Question 19

Web Security Gateway

Answer 19

A go-between device that scans for viruses, filters unwanted

content, and performs data loss prevention functions

Question 20

Honeypot

Answer 20

A single computer (or file, group of files, or IP range) that might be attractive to an attacker

Question 21

Honeynet

Answer 21

A group of computers, servers, or networks used to attract an attacker

Question 22

Data Loss Prevention

Answer 22

§ Systems designed to protect data by conducting content inspection of data being sent out of the network
§ Also called Information Leak Protection (ILP) or Extrusion Prevention Systems (EPS)
§ DLP is used to ensure your private data remains secure

Question 23

Network Intrusion Detection Systems

Answer 23

§ Attempts to detect, log, and alert on malicious network activities
§ NIDS use promiscuous mode to see all network traffic on a segment

Question 24

Network Intrusion Prevention Systems

Answer 24

§ Attempts to remove, detain, or redirect malicious traffic
§ NIPS should be installed in-line of the network traffic flow
§ Should a NIPS fail open or fail shut?
§ NIPS can also perform functions as a protocol analyzer

Question 25

Unified Threat Management

Answer 25

§ Combination of network security devices and technologies to provide more defense in depth within a single device
§ UTM may include a firewall, NIDS/NIPS, content filter, anti-malware, DLP, and VPN
§ UTM is also known as a Next Generation Firewall (NGFW)