Udemy-Domain 4

Question 1

the 3 types of network communication are:

Answer 1

1. Simplex (one way)
2. Half-Duplex (one way at a time, reciprocating)
3. Full-Duplex (simultaneous two-way)

Question 2

___ networks have one channel, whereas ___ networks have multiple channels that can be used simultaneously

Answer 2

Baseband; Broadband

Question 3

the ___ is a global collection of peered WAN networks,
the ___ is an organizations private network,
the ___ is a connection between private networks

Answer 3

Internet;
Intranet;
Extranet

Question 4

data is normally sent over the internet using ___ switching, but ___ switching is a way to guarantee full bandwidth and no delays due to routing

Answer 4

packet; circuit

Question 5

___ gives specific internet traffic priority so that it will be close to real-time (like VOIP)

Answer 5

QoS (Quality of Service)

Question 6

a ___ is used for supporting mobile customers across a number of wireless LAN’s, satellite coverage areas, etc.

Answer 6

GAN (Global Area Network)

Question 7

wire and cable types belong to OSI layer ___

Answer 7

1 (Physical)

Question 8

network topologies belong to OSI layer ___

Answer 8

1 (Physical)

Question 9

threats related to EMI, sniffing, interference, etc. belong to OSI layer ___

Answer 9

1 (Physical)

Question 10

the ___ OSI layer connects nodes in the same network

Answer 10

2 (Data Link)

Question 11

LLC (Logic Link Detection) error detection belongs to OSI layer ___

Answer 11

2 (Data Link)

Question 12

the first ___ bits of a MAC address identify the manufacturer (UOI - Unique Organization Identifier)

Answer 12

24 (6 hexadecimal characters)

Question 13

a devices MAC address is also called its ___

Answer 13

BIA (Burned In Address)

Question 14

the last ___ bits of a MAC address identify the unique device (UAA - Universally Administered Address)

Answer 14

24 or 40

Question 15

ARP (Address Resolution Protocol) belongs to OSI layer ___

Answer 15

2 (Data Link) and 3 (Network)

Question 16

CSMA (Carrier Sense Multiple Access) belongs to OSI layer ___ (CD for ethernet and CA for wireless)

Answer 16

2 (Data Link)

Question 17

Token Passing belongs to OSI layer ___

Answer 17

2 (Data Link)

Question 18

most protocols that start with “I” (except IMAP) like IP, ICMP, IPSEC… belong to OSI layer ___

Answer 18

3 (Network)

Question 19

a large number of protocol attacks (ping floods, smurf, spoofs, etc.) occur on OSI layer ___

Answer 19

3 (Network)

Question 20

SSL/TLS operate from OSI layer ___ through layer ___

Answer 20

4 (Transport); 7 (Application)

Question 21

UDP (User Datagram Protocol) flood attacks are called ___ and occur on OSI layer ___

Answer 21

Fraggle; 4 (Transport)

Question 22

TCP SYN attacks, or SYN floods occur on OSI layer ___

Answer 22

4 (Transport)

Question 23

Fraggle attacks are often more successful than Smurf attacks because

Answer 23

many networks block ICMP but not UDP

Question 24

VIOP and other real-time applications use UDP because ___

Answer 24

they cannot afford the overhead of delivery confirmation

Question 25

the 9 control bit flags in TCP function on OSI layer ___

Answer 25

4 (Transport)

Question 26

establishing (as well as maintaining and terminating) connections between applications is done in OSI layer ___

Answer 26

5 (Session);

Question 27

the only OSI layer with no protocols is layer ___

Answer 27

6 (Presentation)

Question 28

formatting, compressing and file encryption are done on OSI layer ___

Answer 28

6 (Presentation)

Question 29

data is actually presented to the user on OSI layer ___

Answer 29

7 (Application)

Question 30

protocols such at HTTP, HTTPS, FTP, SNMP, IMAP and POP all function on OSI layer ___

Answer 30

7 (Application)

Question 31

non-repudiation, certificates, application proxies, deep packet inspection, content inspection and AD (Active Directory) integration all happen on OSI layer ___

Answer 31

7 (Application)

Question 32

Viruses, worms, trojans, buffer overflow and application/OS vulnerability attacks all happen on OSI layers ___ through ___

Answer 32

5 (Session); 7 (Application)

Question 33

in the TCP/IP model, the ___ layer includes all the communication within a single network segment, which corresponds to OSI layer(s): ___

Answer 33

Link; 1 (Physical) and 2 (Data Link)

Question 34

in the TCP/IP model, the ___ layer includes all the communication between independent networks, which corresponds to OSI layer(s): ___

Answer 34

Internet; 3 (Network)

Question 35

in the TCP/IP model, the ___ layer includes all host-to-host communication, which corresponds to OSI layer(s): ___

Answer 35

Transport; 4 (Transport)

Question 36

in the TCP/IP model, the ___ layer includes all processing of data exchanges for applications, which corresponds to OSI layer(s): ___

Answer 36

Application; 5 (Session), 6 (Presentation) and 7 (Application)

Question 37

the process of sending and receiving packets of data, adding headers to packets, etc. are in the ___ layer of the TCP/IP model

Answer 37

Link and Physical

Question 38

the process of routing packets to their final destination and resolving addresses is on the ___ layer of the TCP/IP model

Answer 38

Internetwork

Question 39

the process of establishing data channels and port addressing for applications is on the ___ layer of the TCP/IP model

Answer 39

Transport

Question 40

the protocols used by applications (user protocols like HTTP, IMAP, etc.) as well as firewalls operate on the ___ layer of the TCP/IP model

Answer 40

Application

Question 41

an IP address and a Port taken together are called a ___, and one difference between TCP and UDP is that ___

Answer 41

socket; TCP uses a pair of sockets (source and destination)

Question 42

since IPv6 requires a 64 bit MAC address, when a device has only 48 bits the characters ___ are added to the end

Answer 42

FF:FE

Question 43

IPv4 only allowed for ___ individual addresses

Answer 43

4 billion

Question 44

to capture all unicast (client/server) traffic, configure a NIC in ___ mode and configure the switch port being used as a ___

Answer 44

promiscuous; span port

Question 45

in ___ traffic, data is being sent to a pre-defined list of clients

Answer 45

multicast

Question 46

Broadcast traffic is sent to ___, if it is layer 3 (IP address) or layer 2 (MAC address) broadcast then ___, and a ___ broadcast sends to everyone logically connected (i.e. VLAN) in a network (the broadcast ID)

Answer 46

everybody in the network;
routers will not pass it on so it won’t go past the Node;
directed

Question 47

each number in an IPv4 address (separated by dots) represents ___

Answer 47

a 32 bit binary octet

Question 48

Private IP addresses include the entire range of ___, ___ and ___ through ___

Answer 48

10.x.x.x (Class A); 192.168.x.x (Class C); 172.16.x.x - 172.31.x.x (Class B)

Question 49

the IP address ___ is reserved for loopback IP’s, on your PC only

Answer 49

127.0.0.0/8 (127.x.x.x)

Question 50

the IP address ___ is reserved for Link-Local, if there is a problem connecting with a router/switch

Answer 50

169.254.0.0/16 (169.254.x.x)

Question 51

the IP address ___ is reserved for Broadcast traffic

Answer 51

255.255.255.255

Question 52

NAT can be ___ (unchanging one-to-one), ___ (one-to-one from a pool of available public addresses) or ___ (One-to-many using ports)

Answer 52

Static NAT; Dynamic NAT; PAT/NAT Overload

Question 53

the ___ in an IPv4 header is designed to prevent routing loops

Answer 53

TTL (Time To Live)

Question 54

the ___ in an IPv4 header identifies the maximum size a packet can be, normally ___ bytes in Ethernet usage

Answer 54

MTU (Maximum Transmission Unit); 1500

Question 55

what was called “Quality of Service” in IPv4 has been renamed and split between ___ and ___ in IPv6

Answer 55

Traffic Class; Flow Label (QoS management)

Question 56

the Time To Live (TTL) in IPv4 has been renamed in IPv6 to ___

Answer 56

Hop Limit

Question 57

ARP poisoning can occur because the ARP request goes out ___ and any device on the network can reply. to avoid this, ARP entries can be hard-coded, or ___ is used by diskless workstations

Answer 57

Multicast; RARP (Reverse Address Resolution Protocol) - (the workstation sends it’s MAC address, asking for an IP address)

Question 58

downloading the OS for diskless workstations, called ___, uses the ___ protocol and port ___

Answer 58

Bootstrapping; TFTP; 69

Question 59

the ___ protocol is used for saving router configuration

Answer 59

TFTP

Question 60

the Mail ___ formats a message using SMTP and sends it to the Mail ___

Answer 60

User Agent; Submission Agent

Question 61

The ___ determines where an email needs to be delivered, resolving the FQDN (Domain Name) of the mail server. The DNS server then replies with any ___ records for that domain

Answer 61

Mail Submission Agent; MX (Mail EXchange)

Question 62

email is delivered to an inbox by an ___, after passing through one or more ___

Answer 62

MDA; MTA (Mail Transfer Agent)

Question 63

DNS servers use ___ port 53

Answer 63

both TCP and UDP

Question 64

DNS servers use the commands ___ and ___

Answer 64

GetHostByName(); GetHostByAddress()

Question 65

___ name servers are the authority for a given namespace

Answer 65

authoritative

Question 66

___ name servers try to resolve names it doesn’t already know

Answer 66

recursive

Question 67

___ name servers keep previously resolved names in a temporary cache

Answer 67

cache

Question 68

the only SNMP version with encryption is ___

Answer 68

v3

Question 69

SNMPv2 is particularly dangerous because ___

Answer 69

it can control devices but has no encryption

Question 70

HTTP can use 3 ports: ___

Answer 70

80; 8008 or 8080

Question 71

HTTPS can use port ___ or ___

Answer 71

443; 8443

Question 72

both DHCP and BOOTP (Bootstrap for diskless workstations) use ports ___

Answer 72

UDP 67 for the Server and 68 for the Client

Question 73

the signal for a wired network flows from the ___, and too much distance from it might require an amplifier to avoid ___

Answer 73

DSLAM (Digital Subscriber Line Access Multiplexer); attenuation

Question 74

the difference between CAT3 and CAT6 UTP (Unshielded Twisted Pair) is ___

Answer 74

it is twisted, because more twisting makes it less susceptible to EMI

Question 75

a copper cable connector for a PC is an ___, but a connector for a phone is an ___

Answer 75

RJ45; RJ11

Question 76

ethernet CSMA uses CD, or ___, which works by ___

Answer 76

Collision Detection; listen to see if the line is idle, then wait a random number of milliseconds to start transmitting

Question 77

wireless CSMA uses CA, or ___, which works by ___, because devices on a wireless network may not ___

Answer 77

Collision Avoidance; sending a RTS (Request To Send) and waiting to a CTS (Clear To Send) if there is congestion; be aware of each other

Question 78

___ is a legacy L2 protocol with no error recovery, focused on speed

Answer 78

Frame-Relay

Question 79

Frame-Relay systems can use either ___ or ___ circuits to transmit data, and uses ___ to identify the virtual connection

Answer 79

PVC (Permanent Virtual Circuit); SVC (Switched Virtual Circuit); DLCI (Data Link Connection Identifiers)

Question 80

___ is a legacy protocol suite for WAN communication which used PSE (Packet-Switching Exchange) nodes and leased lines with error correction which added latency

Answer 80

X.25

Question 81

___ is a legacy WAN technology which carried multiple T circuits over fiber optics using a physical ring topology

Answer 81

SONET (Synchronous Optical Networking)

Question 82

___ is a widely used WAN technology that encapsulates packets with other protocols and labels them for delivery to their next node only. It operated between OSI layers ___

Answer 82

MPLS (Multiprotocol Label Switching). 2 and 3

Question 83

___ is a synchronous L2 WAN protocol that uses polling to transmit data (NRM only). It was replaced by ___, which added error correction and flow control and two modes

Answer 83

SDLC (Synchronized Data Link Control); HDLC (High-level Data Link Control)

Question 84

the 3 modes of SDLC and HDLC are:

Answer 84

NRM (Normal Response Mode) nodes only transmit with permission of the primary
ARM (Asynchronous Response Mode) nodes may initiate communication with the primary
ABM (Asynchronous Balanced Mode) nodes act as primary or secondary

Question 85

most protocols containing the words ___ or ___ are used by VOIP

Answer 85

Transport Protocol; Control Protocol

Question 86

wireless NIC’s can operate in 4 modes:

Answer 86

1. Managed/client (can connect only to a WAP - most common)
2. Master/Infrastructure (act like a hotspot)
3. Ad-Hoc (connect directly to other clients
4. Monitor/RFMIN (captures whatever traffic moves)

Question 87

a ___ is all the devices associated with an organizations WLAN

Answer 87

Service Set

Question 88

WPA2 is also called ___

Answer 88

RSN (Robust Security Network)

Question 89

Bluetooth class 1 has a range of \_\_\_ 
class 2 has a range of \_\_\_

Answer 89

300 feet

30 feet

Question 90

Bluetooth is secured through ___ based algorithms

Answer 90

SAFER+ block cipher

Question 91

___ is taking complete control over a device via Bluetooth, but rarely done because patches have resolved it

Answer 91

bluebugging

Question 92

___ are Layer 1 devices used to extend the range of copper wired transmission by receiving a signal and retransmitting it

Answer 92

Repeaters

Question 93

network ___ are basically just Repeaters with a few extra ports

Answer 93

Hubs

Question 94

___ are Layer 2 devices that separate collision domains on a network

Answer 94

Bridges

Question 95

___ are Layer 2 devices that prevent collisions (like Bridges) with more than 2 ports. Each port is its own collision domain, and it directs traffic via MAC addresses

Answer 95

Switches

Question 96

the ___ command prevents different devices from using the same port on a switch

Answer 96

MAC sticky

Question 97

it is good policy to put each port on a switch on a particular ___ for logical grouping

Answer 97

VLAN

Question 98

use ___ to keep switch traffic only going to other switches that are logically grouped

Answer 98

VLAN pruning

Question 99

___ ports are used to connect two different switches on a network, and often have a larger capacity than other ports

Answer 99

trunk

Question 100

routers have two operational planes:

Answer 100

Control plane and Forwarding plane

Question 101

___ routing only looks at the number of hops to get to a destination, regardless of bandwidth

Answer 101

distance vector

Question 102

when 2 routers have the same information about a network they are in ___

Answer 102

convergence

Question 103

___ is an example of distance vector routing which uses split horizon, route poisoning and hold-down timers to prevent incorrect information from propagating

Answer 103

RIP (Routing Information Protocol)

Question 104

in ___ routing, each node independently runs an algorithm over the map to determine the shortest path from itself to every other node in the network

Answer 104

link-state

Question 105

___ is used within a single routing domain to identify the most efficient routes, and update routes when changes to the topology are detected. It supports IPv4, IPv6 and CIDR addressing

Answer 105

OSPF (Open Shortest Path First)

Question 106

___ is a link-state routing protocol used to connect over the internet

Answer 106

BGP (Border Gateway Protocol)

Question 107

First-Generation firewalls are also called ___ and work on OSI Layer 1-3 using rules

Answer 107

packet-filtering

Question 108

Second-Generation firewalls are also called ___ and work on OSI Layer 1-4, which is better defense against ___

Answer 108

stateful filtering; DOS attacks

Question 109

Third-Generation firewalls are ___ firewalls, which are aware of applications and protocols

Answer 109

Application Layer

Question 110

___ filter traffic between two or more networks, and can be either software or hardware based

Answer 110

Network Firewalls

Question 111

___ provide a layer of software security on one host that controls network traffic in and out of a single machine

Answer 111

Host-Based firewalls

Question 112

a ___ host is a special purpose host designed and configured to withstand attacks

Answer 112

bastion

Question 113

a ___ host has two network interfaces, one trusted and one not (i.e. internet)

Answer 113

dual-homed

Question 114

___ architecture can be used to separate components of a firewall onto separate systems, and is often used to establish a DMZ

Answer 114

screened subnet

Question 115

firewalls are designed to ___ when they fail

Answer 115

close

Question 116

previously, at the demarc where a network meets the internet, the ___ is often a desktop or server, and the ___ is often a modem

Answer 116

DTE (Data Terminal Equipment); DCE (Data Circuit-terminating Equipment)