Perimeter Security

Question 1

Security devices focused on the boundary between the LAN and the WAN
in your organization’s network

Answer 1

Perimeter Security

Question 2

_____ screen traffic between two portions of a network

Answer 2

Firewalls

Question 3

Inspects each packet passing through the firewall and accepts or rejects it
based on the rules

Answer 3

Packet Filtering

Question 4

Filters traffic based upon the ports being utilized and type of connection
(TCP or UDP)

Answer 4

NAT Filtering

Question 5

gateway conducts an in-depth inspection based upon the
application being used

Answer 5

Application Layer Gateway

Question 6

Operates at the session layer and only inspects the traffic during the
establishment of the initial session over TCP or UDP

Answer 6

Circuit Level Gateway

Question 7

Traffic is allowed to enter or leave the network because there is an ACL
rule that specifically allows it

Answer 7

Explicit Allow

Question 8

Traffic is denied the ability to enter or leave the network because there is
an ACL rule that specifically denies it

Answer 8

Explicit Deny

Question 9

Traffic is denied the ability to enter or leave the network because there is
no specific rule that allows it

Answer 9

Implicit Deny

Question 10

Firewall installed to protect your server by inspecting traffic being sent to
a web application

Answer 10

Web Application Firewall

Question 11

§ A device that acts as a middle man between a device and a remote server

Answer 11

Proxy Server

Question 12

is used to secure a network by keeping its machines
anonymous during web browsing

Answer 12

IP Proxy

Question 13

Attempts to serve client requests by delivering content from itself
without actually contacting the remote server

Answer 13

Caching Proxy

Question 14

Used in organizations to prevent users from accessing prohibited
websites and other content

Answer 14

Internet Content Filter

Question 15

A go-between device that scans for viruses, filters unwanted
content, and performs data loss prevention functions

Answer 15

Web Security Gateway

Question 16

A single computer (or file, group of files, or IP range) that might be
attractive to an attacker

Answer 16

Honeypot

Question 17

§ A group of computers, servers, or networks used to attract an attacker

Answer 17

Honeynet

Question 18

Systems designed to protect data by conducting content inspection of
data being sent out of the network
§ Also called Information Leak Protection (ILP) or Extrusion Prevention
Systems (EPS)

Answer 18

Data Loss Prevention

Question 19

§ Attempts to detect, log, and alert on malicious network activities

Answer 19

Network Intrusion Detection Systems(NIDS)

Question 20

§ Attempts to remove, detain, or redirect malicious traffic

Answer 20

Network Intrusion Prevention System (NIPS)

Question 21

Combination of network security devices and technologies to provide
more defense in depth within a single device

Answer 21

Unified Threat Management