Terminology 3

Question 1

In an IP header, what is the protocol number for TCP?

Answer 1

6

Question 2

In an IP header, what is the protocol number for UDP?

Answer 2

17

Question 3

In an IP header, what is the protocol number for EIGRP?

Answer 3

88

Question 4

In an IP header, what is the protocol number for OSPF?

Answer 4

89

Question 5

In an IP header, what is the protocol number for IPv6?

Answer 5

41

Question 6

In an IP header, what is the protocol number for GRE?

Answer 6

47

Question 7

In an IP header, what is the protocol number for L2TP (Layer 2 Tunnelling Protocol)?

Answer 7

115

Question 8

How are ICMP messages carried across a network?

Answer 8

As IP packets - They are encapsulated within IP datagrams.

Question 9

What does GRE do?

Answer 9

Encapsulates other protocols inside IP tunnels

Question 10

What are the parts of a GRE header?

Answer 10

Transport IP Header
GRE Header
Passenger IP Packet

Question 11

What is the minimum overhead GRE adds to tunnelled packets?

Answer 11

24 bytes

Question 12

What are 3 limitations of IPSec?

Answer 12

Does not support IP broadcast
Does not support IP multicast
Does not support multi-protocol traffic

Question 13

How can you overcome the limitations of IPSec?

Answer 13

Run GRE over IPSec

Question 14

What are the two primary security protocols used by IPSec?

Answer 14

Authentication Header (AH)
Encapsulating Security Payload (ESP)

Question 15

How does AH work?

Answer 15

The sender generates a one-way hash of the whole packet, then the receiver generates the same hash, and compares them.

Question 16

How much of the packet does AH authenticate?

Answer 16

The whole packet

Question 17

What are the five components of ESP?

Answer 17

1. Confidentiality
2. Data Integrity
3. Authentication
4. Anti-Replay Service
5. Traffic Flow Confidentiality

Question 18

Which 4 cryptographic algorithms are defined for use with IPSec?

Answer 18

1. HMAC-SHA1/SHA2 (for integrity and authenticity)
2. TripleDES-CBC (confidentiality)
3. AES-CBC 128 bit keys (confidentiality)
4. AES-GCM ChaCha20-Poly1305 (Confidentiality and Authentication)

Question 19

How does ESP counter replay attacks?

Answer 19

Use of sequence numbers

Question 20

What needs to be enabled for ESP to provide traffic flow confidentiality?

Answer 20

Tunnel mode

Question 21

What two things does the transport layer use port numbers for?

Answer 21

Identify the virtual circuit (source port)
Identify the upper layer process (destination port)

Question 22

What is the class A usable network range?

Answer 22

1 to 126

Question 23

That does a network address of all 0s designate?

Answer 23

This network

Question 24

What is the network address 127 reserved for?

Answer 24

Network diagnostics (loopback)

Question 25

What does a host address of all 0 s refer to?

Answer 25

This network

Question 26

What does a host address of all 1s refer to?

Answer 26

All hosts

Question 27

What does an IP address of 0.0.0.0 signify?

Answer 27

The default route

Question 28

What does an IP address of 255.255.255.255 signify?

Answer 28

Broadcast to all hosts on the current network

Question 29

Layer 2 broadcast - where does it go, what is the limit and how is it addressed?

Answer 29

All nodes on a LAN
Won’t go past the LAN boundary (router)
FF:FF:FF:FF:FF:FF

Question 30

Layer 3 broadcast - where does it go? How are they addressed?

Answer 30

All nodes on the network.
All host bits on.

Question 31

What is the address range and class for IPv4 multicast?

Answer 31

Class D
224.0.0.0 to 239.255.255.255

Question 32

What is the APIPA address range?

Answer 32

169.254.0.1 to 169.254.255.254

Question 33

What are the parts of an IPv6 address, and length (in bits)?

Answer 33

1. Routing or Global prefix - 48
2. Subnet ID - 16
3. Interface ID - 64

Question 34

IPv6 Address Types:
Unicast

Answer 34

Destined for a single interface

Question 35

IPv6 Address Types:
Global Unicast

Answer 35

Publicly routable address

Question 36

IPv6 Address Types:
Link local

Answer 36

Similar to APIPA addresses - not meant to be routable

Question 37

IPv6 Address Types:
Unique Local

Answer 37

Similar to an IPv4 private address. Unique local can be routed within your organisation

Question 38

IPv6 Address Types:
Multicast

Answer 38

one-to-many, as in IPv4. Identifiable as they always start FF

Question 39

IPv6 Address Types:
Anycast

Answer 39

one-to-one of many or one-to-nearest. Only delivered to one address

Question 40

IPv6 Special Addresses:
0:0:0:0:0:0:0:0
or ::

Answer 40

Source of the host before the host receives an IP address

Question 41

IPv6 Special Addresses:
0:0:0:0:0:0:0:1
or ::1

Answer 41

Local loopback (127.0.0.1 equivalent)

Question 42

IPv6 Special Addresses:
0::FFFF:192.168.100.1

Answer 42

How an IPv4 address would be written in a mixed IPv6/IPv4 network

Question 43

IPv6 Special Addresses:
2000::/3

Answer 43

The global unicast address range allocated for internet access

Question 44

IPv6 Special Addresses:
FC00::/7

Answer 44

The unique local unicast range

Question 45

IPv6 Special Addresses:
FE80::/10

Answer 45

The link-local unicast range

Question 46

IPv6 Special Addresses:
FF00::/8

Answer 46

The multicast range

Question 47

IPv6 Special Addresses:
3FFF:FFFF::/32

Answer 47

Reserved for examples and documentation

Question 48

IPv6 Special Addresses:
2001:0DB8::/32

Answer 48

Reserved for examples and documentation

Question 49

IPv6 Special Addresses:
2002:/16

Answer 49

Used for IPv6 to IPv4 tunnelling

Question 50

SLAAC

Answer 50

Stateless Address Autoconfiguration

Question 51

What separates the OUI and Unique Interface Address parts of a MAC address when creating an EUI-64 address?

Answer 51

FFFE

Question 51

What bit of the OUI is toggled when creating an EUI-64 address?

Answer 51

7

Question 52

What does it mean when the UL bit (bit 7) of a 16 bit interface ID is set to 1?

Answer 52

The address is Universally unique

Question 53

What does it mean when the UL bit (bit 7) of a 16 bit interface ID is set to 0?

Answer 53

The address is locally unique

Question 54

Convert this MAC address to EUI-64
(The global prefix and subnet is 2001:0db8:0:1):
0090:2716:fd0f

Answer 54

2001:0db8:0:1:0290:27ff:fe16:fd0f

Question 55

Convert this MAC address to EUI-64
(The global prefix and subnet is 2001:0db8:0:1):
aa12:bcbc:1234

Answer 55

2001:0db8:0:1:a812:bcff:febc:1234

Question 56

What is dual stacking?

Answer 56

Having both IPv4 and IPv6 running on our network

Question 57

What is 6 to 4 tunnelling?

Answer 57

Using tunnelling to allow IPv6 traffic to traverse an IPv4 network

Question 58

Why do we use Teredo?

Answer 58

Because NAT and PAT would break 6 to 4 tunnels

Question 59

What does Teredo do?

Answer 59

Allows the IPv6 tunnel traffic to be forwarded as UDP pacckets

Question 60

What is 2^2=

Answer 60

4

Question 61

2^3=

Answer 61

8

Question 62

2^4=

Answer 62

16

Question 63

2^5=

Answer 63

32

Question 64

2^6=

Answer 64

64

Question 65

2^7=

Answer 65

128

Question 66

2^8=

Answer 66

256

Question 67

2^9=

Answer 67

512

Question 68

2^10=

Answer 68

1024

Question 69

2^11=

Answer 69

2048

Question 70

2^12=

Answer 70

4096

Question 71

2^13=

Answer 71

8192

Question 72

2^14=

Answer 72

16384

Question 73

2^15=

Answer 73

32768

Question 74

2^16=

Answer 74

65536

Question 75

What are 4 benefits of subnetting?

Answer 75

1. Reduced network traffic
2. Optimised network performance
3. Simplified management
4. Facilitated spanning of large geographical distances

Question 76

What are 3 steps in designing subnets?

Answer 76

1. Determine the number of network IDs
2. Determine the number of host IDs per subnet
3. Create subnets

Question 77

When subnetting, how many network IDs are required?

Answer 77

One for each subnet and one for each WAN link

Question 78

When subnetting, how many host IDs are required per subnet?

Answer 78

One for each TCP/IP host, one for each router interface

Question 79

CIDR

Answer 79

Classless Inter-Domain Routing

Question 80

VLSM

Answer 80

Variable-Length Subnet Masking

Question 81

When subnetting “the fast way”, what are the 5 questions we need to answer after choosing a subnet mask?

Answer 81

1. How many subnets does the chosen mask produce?
2. How many VALID hosts per subnet are available?
3. What are the valid subnets?
4. What is the broadcast address of each subnet?
5. What are the valid hosts in each subnet?

Question 82

What are the 3 types of NAT?

Answer 82

1. SNAT (Static NAT)
2. DNAT (Dynamic NAT)
3. Overloading (or PAT)

Question 83

What is SNAT?

Answer 83

One to one mapping between local and global addresses

Question 84

What is DNAT?

Answer 84

Dynamically mapping addresses from a global pool to an internal address

Question 85

What is Overloading/PAT?

Answer 85

Mapping multiple local IP addresses to a single global address, using different ports.

Question 86

In NAT, what is a global address?

Answer 86

Global addresses are the addresses used after NAT translation.

Question 87

In NAT, what are local addresses?

Answer 87

Local addresses are the addresses used before NAT translation.

Question 88

What is an inside local address?

Answer 88

The address of the source before translation

Question 89

What is an outside local address?

Answer 89

The address of the destination before translation

Question 90

What is an inside global address?

Answer 90

The address of the source after translation

Question 91

What is the outside global address?

Answer 91

The address of the destination after translation

Question 92

What does a router do when it gets a packet addressed to a network that is not in its routing table?

Answer 92

It discards it

Question 93

When a host sends a packet to a remote network, what is the MAC address of the frame it sends?

Answer 93

The interface of its gateway router.

Question 94

What is the first high-level division of dynamic routing protocols?

Answer 94

It is between:
1. Interior gateway protocols (IGPs)
2. Exterior gateway protocols (EGPs)

Question 95

What is an autonomous system (AS) when talking about routing?

Answer 95

A collection of networks or subnets in the same administrative domain.

Question 96

What are the two primary divisions of IGP routing protocols?

Answer 96

1. Distance Vector (DV)
2. Link State (LS)

Question 97

What are two DV protocols?

Answer 97

RIP and IGRP

Question 98

What are two LS protocols?

Answer 98

OSFP and IS-IS

Question 99

What are two hybrid routing protocols?

Answer 99

EIGRP and BGP