Section 6: Specialized Network Devices

Question 1

VPN

Answer 1

Virtual Private Network - Creates a secure VPN or virtual tunnel over an untrusted network like the Internet

Question 2

VPN Concentrator (

Answer 2

Terminates VPN tunnels and allows for multiple VPN connections in one location. Some firewalls support this function. Logically, when performing this function the firewall is now functioning as a concentrator.

Question 3

VPN Headend

Answer 3

Headend is a specific type of VPN concentrator used to terminate IPSec VPN tunnels within a router or other device.

Question 4

Firewall

Answer 4

▪ Network security appliance at network boundary
▪ Can be software or hardware
▪ Can be Stateful or Stateless
▪Allows traffic that originates from inside the network and go out to the Internet
▪Blocks traffic originated from the Internet from getting into the network

Question 5

NGFW

Answer 5

Next-Gen Firewall -
▪ Conducts deep packet inspection at Layer 7
▪ Detects and prevents attacks
▪ Much more powerful than basic stateless or stateful firewalls
▪ Continually connects to cloud resources for latest information on threats

Question 6

IDS

Answer 6

Intrusion Detection System
▪ Recognizes attacks through signatures and anomalies (Only see and log intrusion)

Question 7

IPS

Answer 7

Intrusion Prevention System
▪ Recognizes attacks through signatures and anomalies and can respond (Can see log and respond to an intrusion)

Question 8

Proxy Server

Answer 8

▪ A specialized device that makes requests to an external network on behalf of a client
(Two functions: 1)Security - can perform content filtering; 2) Can cache content to improve performance - not as efficient as Content Engine)

Question 9

Content Engine/Caching Engine

Answer 9

▪ Dedicated appliance that performs the caching functions of a proxy server. (Good for speeding up local access when network performance isn’t ideal.)

Question 10

Content Switch/Load Balancer

Answer 10

▪ Distributes incoming requests across various servers in a server farm