Session 3 Flashcards
What is the role of a first generation or classic firewall?
Choices: A - Data layer 5 analyzation B - Packet filtering C - Application filtering D - Circuit filtering
B - Packet filtering
Which type of firewall works at network layer 7?
Choices: A - Classic B - Packet C - Application-level D - Circuit
C - Application-level
A software firewall has a reduced attack surface due to its included operating system.
A - True
B - False
B - False
Which are hardware-based firewall traits? Choose two answers.
Choices: A - Take up CPU space B - No competition for resources C - Have their own operating system D - Not dedicated
B - No competition for resources
C - Have their own operating system
A stateless inspection inspects data based on which items? Choose three answers.
Choices: A - Destination and source IP addresses B - Port numbers C - Protocol addresses D - Return traffic E - Packet types
A - Destination and source IP addresses
B - Port numbers
E - Packet types
A/The __________ is a collection of settings that are used to provide a positive security impact.
Choices: A - security baseline B - Microsoft baseline C - Security Compliance Manager D - surveillance manager
A - security baseline
Which best defines defense in depth?
Choices:
A - Providing multiple layers of security to protect assets
B - The last line of defense in protecting assets
C - A network security infrastructure
D - Defensive layers
A - Providing multiple layers of security to protect assets
A(n) ________ is a logical network managed on a physical switch.
Choices: A - LAN B - VLAN C - IPRNET D - ARCHNET
B - VLAN
A router uses which item to determine where packets are sent?
Choices: A - Delay-tolerant network B - Event handler C - Presentation layer D - Routing table
D - Routing table
Which are traits of software routers? Choose two answers.
Choices:
A - Better scaling than hardware routers
B - Worse scaling than hardware routers
C - Support the same number of protocols as hardware routers
D - Do not support the same number of protocols as hardware routers
B - Worse scaling than hardware routers
D - Do not support the same number of protocols as hardware routers
Which type of route allows the users to control exactly where traffic goes?
Choices: A - Static B - Dynamic C - Custom D - IP
A - Static
Which best defines a honeypot?
Choices:
A - A system set up to wait for an IDS
B - A system designed to trap attackers
C - A collection of systems designed to trap attackers
D - An area of a network that is easily hackable
C - A collection of systems designed to trap attackers
Which item is a collection of honeypots on a network?
Choices: A - Honeynet B - Honey group C - Honey party D - Honeycluster
A - Honeynet
The perimeter network is commonly placed where on a network?
Choices:
A - Between the internal network and VPN
B - In the DMZ
C - Between the internal network and a VLAN
D - Between the internal network and a public network
D - Between the internal network and a public network
Which is a difference between a sandwich DMZ and a single firewall DMZ?
Choices:
A - A sandwich DMZ has firewalls both inside and outside the perimeter network
B - A single firewall DMZ has firewalls both inside and outside the perimeter network
C - A sandwich DMZ is more useful
D - A single firewall DMZ is more secure
A - A sandwich DMZ has firewalls both inside and outside the perimeter network