Section 11 Network Design

Question 1

Used to explain network communications between a host and remote device over a LAN or Wan.

Answer 1

OSI Model

Question 2

Represents the actual network cables and radio waves used to carry data over a network.

Answer 2

Physical Layer

Question 3

Describes how a connection is established, maintained, and transferred over the physical layer and uses physical addressing (MAC addresses).

Answer 3

Data Link Layer

Question 4

Uses logical address to route or switch information between hosts, the network, and the internet works.

Answer 4

Network Layer

Question 5

Manages and ensures transmission of the packets occurs from a host to a destination using either TCP or UDP.

Answer 5

Transport Layer

Question 6

Manages the establishment, termination, and synchronization of a session over the network.

Answer 6

Session Layer

Question 7

Translates the information into a format that the sender and receiver both understand.

Answer 7

Presentation Layer

Question 8

Layer from which the message is created, formed, and originated.

Answer 8

Application Layer

Question 9

Attempt to overwhelm the limited switch memory set aside to store the MAC addresses for each part.

Answer 9

MAC Flooding

Question 10

Occurs when an attacker masks their own MAC address to pretend they have the MAC address of another device.

Answer 10

MAC Spoofing

Question 11

Occurs when an attacker attempts to gain physical access.

Answer 11

Physical Tampering

Question 12

Used to connect two or more networks to form as internetowrks.

Answer 12

Routers

Question 13

An ordered set of rules that a router uses to decide whether to permit or deny traffic based upon given characteristics.

Answer 13

Access Control List

Question 14

Focused on providing controlled access to publicly available servers that are hosted within your organizational networks.

Answer 14

De-Militarized Zone (DMZ)

Question 15

Specialized type of DMZ that is created for your partner organizations to access over a wide area network.

Answer 15

Extranet

Question 16

Any host that accepts inbound connections from the internet.

Answer 16

Internet-facing Host

Question 17

Hosts or servers in the DMZ which are not configured with any services that run on the local network.

Answer 17

Bastion Hosts

Question 18

A hardened server that provides access to other hosts within the DMZ.

Answer 18

Jumpbox

Question 19

Security technique in which devices are scanned to determine its current state prior to being allowed access onto a given network.

Answer 19

Network Access Control (NAC)

Question 20

A piece of software that is installed on the device requesting access to the network.

Answer 20

Persistent Agents

Question 21

Uses a piece of software that scan the device remotely or is installed and subsequently removed after the scan.

Answer 21

Non-Persistent Agents

Question 22

Attacker configures their device to pretend it is a switch and uses it to negotiate a trunk link to break out of a VLAN.

Answer 22

Switch Spoofing

Question 23

Attacker adds on additional VLAN tag to create an outer and inner tag

Answer 23

Double Tagging

Question 24

Act of creating subnetworks logically through the manipulation of IP addresses

Answer 24

Subnetting

Question 25

Process of changing an IP address while it transmits across a router.

Answer 25

Network Address Translation

Question 26

Router keeps track of requests from internal hosts by assigning them random high number ports for each request.

Answer 26

Port Address Translation (PAT)

Question 27

Term used to describe devices that provide voice communications to users.

Answer 27

Telephony

Question 28

A device that could modulate digital information into an analog signal for transmission over a standard dial up phone line.

Answer 28

Modem

Question 29

Internal phone system used in large orgnaizaitons.

Answer 29

Public Branch Exchange (PBX)

Question 30

Digital phone service provided by software or hardware devices over a digital network.

Answer 30

Voice Over Internet Protocol (VOIP)