Section 15: Security Technologies

Question 1

What is a Firewall?

Answer 1

Uses a set of rules defining the traffic types permitted or denied through device

Question 2

What is a NextGen Firewall (NGFW)?

Answer 2

Third-generation firewall that conducts deep packet inspection and packet filtering

Question 3

What is an Access Control List (ACL)?

Answer 3

Set of rules applied to router interfaces that permit or deny certain traffic

Question 4

What is a Demilitarized Zone (DMZ)?

Answer 4

Connects to devices that should have restricted access from the outside zone (like web servers)

Question 5

What is Telnet and what is the Port Number?

Answer 5

Sends text-based commands to remote devices and is a very old networking protocol. Port 23

Question 6

What is Secure Shell (SSH) and what is the Port Number?

Answer 6

Encrypts everything that is being sent and received between the client and the server

Question 7

What is Remote Desktop Protocol (RDP) and what is the Port Number?

Answer 7

Provides graphical interface to connect to another computer over a network connection. Port 3389

Question 8

What is a Remote Desktop Gateway (RDG)?

Answer 8

Provides a secure connection using the SSL/TLS protocols to the server via RDP

Question 9

What is a Virtual Private Network (VPN)?

Answer 9

Establishes a secure connection between a client and a server over an untrusted public network like the Internet

Question 10

What is Virtual Network Computing (VNC) and what is the Port Number?

Answer 10

Designed for thin client architectures and things like Virtual Desktop Infrastructure (VDI). Port 5900

Question 11

What is In-Band Management?

Answer 11

Managing devices using Telnet or SSH protocols over the network

Question 12

What is Out-of-Bound Management?

Answer 12

Connecting to and configuring different network devices using an alternate path or management network

Question 13

What is an Extensible Authentication Protocol (EAP)?

Answer 13

Allows for more secure authentication methods to be used instead of just a username and a password

Question 14

What is a Site-to-Site VPN?

Answer 14

Interconnect to sites and provide an inexpensive alternative to dedicated lease lines

Question 15

What is a Client-to-Site VPN?

Answer 15

Connecting a single remote user back to a corporate network.

Client to Router

Question 16

What is a Clientless VPN?

Answer 16

Creates a secure, remote-access VPN tunnel using a web browser without requiring a software or hardware client

Question 17

What is a Split Tunnel VPN?

Answer 17

Routes and encrypts only the traffic bound for the headquarters over the VPN, and sends the rest of the traffic to the regular Internet

Better Performance

Question 18

What is a Full Tunnel VPN?

Answer 18

Routes and encrypts all network requests through the VPN connection back to the headquarters

More security

Question 19

What is a Secure Socket Layer (SSL)?

Answer 19

Provides cryptography and reliability using the upper layers of the OSI model, specifically Layers 5, 6, and 7

Question 20

What is the Transport Layer Security (TLS)?

Answer 20

Provides secure web browsing over HTTPS

Question 21

What is Internet Security (IPSec)?

Answer 21

Provides authentication and encryption of data packets to create a secure encrypted communication path between two computers

Question 22

What does CIA stand for?

Answer 22

Confidentiality, Integrity, Authentication

Question 23

What is Confidentiality?

Answer 23

Using data encryption

Question 24

What is Integrity?

Answer 24

Ensuring data is not modified in transit

Question 25

What is Authentication?

Answer 25

Verifying parties are who they claim to be

Question 26

What is an Authentication Header (AH)?

Answer 26

Provides connectionless data integrity and data origin authentication for IP datagrams and provides protection against replay attacks

Question 27

What is an Encapsulating Security Payload (ESP)?

Answer 27

Provides authentication, integrity, replay protection, and data confidentiality

Question 28

What is the Simple Network Management Protocol (SNMP) and what is the Port Number?

Answer 28

Used to send and receive data from managed devices back to a centralized network management station. Port Number is 161 & 162

Question 29

What is a Management Information Base (MIB)?

Answer 29

The structure of the management data of a device subsystem using a hierarchical namespace containing object identifiers

Question 30

What is the System Logging Protocol (Syslog) and what is the Port Number?

Answer 30

Sends system log or event messages to a central server. Port Number 514

Question 31

What is a Traffic Log?

Answer 31

Contains information about the traffic flows on the network

Question 32

What is an Audit Log?

Answer 32

Contains information about software running on a client or server

Question 33

What is the Security Information and Event Management (SIEM)?

Answer 33

Provides real-time or near-real-time analysis of security alerts generated by network hardware and applications