Telecommunications and Network Security

Question 1

OSI Model

Answer 1

breaks communication process into layers

provides common framework for hardware and software developers

Question 2

Layer 7, Application Layer

Answer 2

receives raw data from application in use and provides services to it

HTTP
DNS Queries
FTP
SMTP

Question 3

Layer 6, Presentation Layer

Answer 3

manner in which data from application layer is presented to the destination application layer

MIME
XDR

Question 4

Layer 5, Session Layer

Answer 4

adds information to packet that makes communication session possible between service or application on the source device with the same on the destination device

application or service in use is communicated with a port number

Question 5

Layer 4, Transport

Answer 5

establishes session between 2 physical systems

either connection-oriented (TCP) or connectionless (UDP)
UDP header is much smaller, fewer features than TCP.

UDP is low overhead, TCP is high overhead

the PDU here is called a segment

Question 6

Layer 3, Network

Answer 6

information needed route the packet is added here as a source and destination logical address (IP address)

PDU here is called a packet

examp protocols
IP
ICMP
IGMP
ARP

Question 7

Layer 2, Data Link

Answer 7

determines physical address for destination

Media Access Control (MAC)

PDU here is called a frame

Adds a trailer at the end of the frame, containing data to verify none of the data inside has been altered en route

Question 8

Layer 1, Physical

Answer 8

turns information into bits and sends it on medium

radio waves
electrical signals
light patterns

Question 9

IP4 vs IP6 headers

Answer 9

IP4 is smaller but more complicated

Question 10

TCP/IP Model

Answer 10

Has 4 layers

Application (OSI layer 5-7)
Transport (OSI layer 4 - same)
Internet (OSI layer 3)
Link (OSI layer 1-2)

Question 11

Protocols and Ports to know

telnet
SMTP
SNMP
FTP
POP3
DNS
DHCP
LDAP

Answer 11

telnet, TCP, UDP 23
SMTP UDP, 25
SNMP, TCP, UDP 161, 162
FTP TCP, UDP, 20,21
POP3 TCP, UDP, 110
DNS, TCP, UDP 53
DHCP, UDP 67, 68
LDAP TCP, UDP 389

Question 12

Network Transmissions

Asynchronous
Synchronous

Answer 12

Asynchronous - sender and receiver stay in synch with each other by sender inserting stop and start bits around the data

Synchronous - clock is used to synchronize the sender and receiver

Question 13

Broadband
vs
Baseband

Answer 13

broadband - connection divided into frequencies. Each device or stream gets a different channel (frequency)

baseband - time slots assigned to devices or streams

Question 14

Cabling

Coaxial

Answer 14

center core (solid or braided)

insulator, metallic shield, plastic jacket

Question 15

Cabling

Twisted Pair

Answer 15

conductor, insulator, cable jacket

4 pairs of cable, each twisted around the other to prevent crosstalk

Question 16

Cabling

Fiber Optic

Answer 16

core, cladding, outside jacket

Question 17

Collision Domains

Answer 17

any part of network where devices’ packets can collide

a switch provides unique collision domains for each port
every device on a hub is in same collision domain

Question 18

Contention Methods

CSMA/CD
CSMA/CA
Token Passing
Polling

Answer 18

CSMA/CD (wired ethernet)
(carrier sense multiple access collision detection). if a collision, message has everyone stop sending, then restart

CSMA/CA (collision avoidance) for wireless
devices tell each other when they’re getting ready to send

Token Passing (token ring)
devices can't send until they receive an empty token

Polling

Question 19

Network Protocols and Services

ARP

Answer 19

translates MAC to IP address

1. send ARP request
2. receive ARP reply
3. adds to ARP cache

Question 20

Network Protocols and Services

DHCP

Answer 20

1. client sends DHCP Discover packet
2. server sends DHCP Offer packet
3. client sends DHCP Request
4. server sends DHCP Pack

Question 21

Routing Protocols

Answer 21

Standards
RIP
IS-IS
OSPF
BGP
VRRP

Proprietary (Cisco)
IGRP, EIGRP

Question 22

Network devices

Patch Panel
Multiplexer

Answer 22

Patch Panel - termination point for cables

Multiplexer - combines several input signals into one output signal

Question 23

Network Devices

Hub

Answer 23

operates at layer 1

no intelligence

Question 24

Network Devices

Hub

Switch

Answer 24

Hub
operates at layer 1
no intelligence

Switch
intelligence. Has MAC address table

Question 25

Network Devices

Router
Gateway

Answer 25

Router - layer 3, routing table directs traffic

Gateway - any devices that performs a translation or acts as a control point for entry/exit

Question 26

Firewalls

Packet filtering
Stateful
Circuit Level Proxy
Application Level Proxy 
Dynamic Packet Filtering
Kernel Proxy

Answer 26

Packet filtering
Stateful
Circuit Level Proxy - proxy server. rules controls traffic

Application Level Proxy - operates at higher level of OSI model than circuit proxy.

Dynamic Packet Filtering - ability to open certain ports dynamical based on the connection iniated from inside network

Kernel Proxy - firewall that operates at kernel level

Question 27

Firewall Architectures

Bastion Host
Dual Homed
Three Legged
Screened Subnet

Answer 27

Bastion Host - unprotected, has to be locked down

Dual Homed - 2 NICS, one on internet, one to LAN

Three Legged - 3 NICs, one on internet, one to DMZ, one to LAN

Screened Subnet - 2 firewalls, area between them is the screened subnet

Question 28

Cloud Computing

IAAS
PAAS
SAAS

Answer 28

IAAS - Infrastructure, vendor provides hardware

PAAS - vendor provides HW and SW

SAAS - vendor provides HW, SW, application

Question 29

Network Types

LAN
Intranet
Extranet
MAN
WAN

Answer 29

LAN
Intranet - network within the LAN to host website

Extranet - network with resources accessible from outside world (partners, vendors)

MAN - network around a city, could be wired, wireless

WAN - wide area network

Question 30

WAN Technologies

US
T Carriers. T1, T3

Europe
E Carriers. E1, E3

Answer 30

T1 - 24 channels, 1.544 Mbps
T3 - 672 channels, 44.736 Mbps (28 T1’s)

E1 - 2.048 Mbps
E3 - 8.

Question 31

WAN Technologies

US
T Carriers. T1, T3

Europe
E Carriers. E1, E3

Answer 31

T1 - 24 channels, 1.544 Mbps
T3 - 672 channels, 44.736 Mbps (28 T1’s)

E1 - 2.048 Mbps
E3 - 34 Mbps

Question 32

CSU / DSU

Channel Service Unit / Data Service Unit

Data Communications Equipment (DCE)

Data Terminal Equipment

Answer 32

CSU/DSU
Connects LAN to WAN. Translates information from LAN format to WAN compatible

DCE - provides interface to router

DTE - router

Question 33

Network Connections

VOIP

Answer 33

create separate VLAN for IP phones

deploy VOIP aware firewall at perimeter

secure network layer with IPSec

Question 34

Remote Access Technologies

Dialup
ISDN
Cable
DSL

Answer 34

ISDN - Basic Rate (BRI)
3 channels, total 144 Kbps
ISDN - Primary Rate (PRI)
23 channels for 1.544 Mbps

DSL
Symmetric DLS

Question 35

Wireless Technologies

Frequency Hopping Spread Spectrum
Direct Sequence Spread Spectrum
Orthogonal Frequency Division Multiplexing

Answer 35

FHSS - bluetooth
DSSS - 802.11
OFDM - 802.11

Question 36

ICMP Attacks

Ping of death
Smurf
Fraggle
ICMP redirect
Ping scanning

Answer 36

Ping of death - so many pings that target can’t do anything else

Smurf - amplified ping of death

Fraggle - like smurf but UDP

ICMP redirect - attacker changes route

Ping scanning - network scan