Section 4: Network and Security Foundations Flashcards
Describe the packet filtering type of firewall and which layers of OSI it operates on
- They operate on layers 3 and 4 of OSI
- They inspect ingress and egress of traffic and compare:
- Protocol (typically IP)
- Source IP Address
- Destination IP Address
- Source TCP or UDP port number
- Destination TCP or UDP port number
What is a firewall?
A barrier that intercepts and inspects network traffic moving from one network to another
Describe circuit-level gateway and which levels of OSI it operates on
Middleman that keeps the true identify of client and server hidden. Operates on layer 5, session layer of OSI
What is NAT?
Network Address Translation
What is PAT?
Port Address Translation
Describe ‘Stateful Inspection’
Stateful inspection reduces the number of firewall rules by acknowledging that a connection is a single conversation. Only one rule is needed; an acknowledgment that communication has begun
Describe ‘Stateless Inspection’
Stateless inspection views a connection as two things; a request and response, between a client and a server
What is an ephemeral port?
An ephemeral port is a temporary communication hub used for Internet Protocol (IP) communications and is opened on the clients end
Describe application level firewalling
proxy servers which inspect and parse the data and then send on to receiver if deemed safe
Describe IDS
Intrusion Detection System. Passive system which monitors traffic and notifies admin if a suspicious pattern is noticed
Describe IPS
Intrusion Prevention System. Active system which can stop all traffic if a suspicious pattern is noticed
What is ‘in-line’ mode in the context of IPS?
physically in between networks
What are the layers of OSI?
- Physical
- Data link
- Network
- Transport
- Session
- Presentation
- Application
Summarize the function of Layer 1 in the OSI model
How computers are physically connected
Summarize the function of Layer 2 in the OSI model
- How computers are logically connected
- Data is encapsulated into a frame, and transmitted through medium on layer 1
Summarize the function of Layer 3 in the OSI model
Allows computers on different networks to exchange data
Summarize the function of Layer 4 in the OSI model
- The heart of OSI
- Ensures that all data from the upper layers (5,6,7) are delivered according to the needs of an application
Summarize the function of Layer 5 in the OSI model
- Allows a computer to distinguish between connections with the same host
- Like managing different conversations with the same person… You may switch topics, and then go back to the first one etc..
Summarize the function of Layer 6 in the OSI model
- Translation and security layer between applications
- Encoding and encrypting data
Summarize the function of Layer 7 in the OSI model
How users connect to services using HTTP
Define ‘encoding’
The process of structuring data in a specific way, like XML of GIF
Define ‘encrypting’
The process of concealing data. Commonly used with TLS (transport layer security)
What are some threats that may occur at layer 1?
- Wire tapping
- Insecure physical security
- No security guard
- unlocked doors
What are some threats that may occur at layer 2?
- ARP poisoning
- Allows an attacker to eavesdrop on all network traffic sent through an ethernet switch