Untitled 17

Question 1

__ topology e.g. Ethernet, ATM defines the rules of communication across the __ topology.

Answer 1

Logical topology (layer 2), Physical topology (layer 1)

Question 2

__ applies labels to packets, is commonly used to privately control international networks and is much cheaper than dedicated lines.

Answer 2

MPLS (Multi Protocol Label Switching)

Question 3

__ are asynchronous devices that provide dial-in and dial-out connections.

Answer 3

Access servers

Question 4

__ are distributed series of caching web servers, designed to improve performance and availability by bring data closer to the end user.

Answer 4

CDN (Content Distribution Network)

Question 5

__ are the signaling protocols and __ is the packetization of your voice.

Answer 5

SIP and H.323 (which is wrapped around SIP for security), RTP (Real-time protocol)

Question 6

__ checks a system’s patches, antivirus and local firewall. If the client passes, access is granted, otherwise it is placed on an isolated VLAN where patches and antivirus updates may be provided.

Answer 6

NAC (Network Access Control). It builds on top of 802.1X.

Question 7

__ communications is where data is just sent with no need for start and stop bits. It is more efficient since there is no overhead (start/stop bits) but trasmitting and receiving stations need to be synchronized.

Answer 7

Synchronous

Question 8

__ communications is where data is sent by changes in levels of voltage or current in a sequential fashion. There are start and stop sequence bits.

Answer 8

Asynchronous

Question 9

__ DSL has the same upload and download rates.

Answer 9

SDSL (symmetric)

Question 10

__ DSL is higher download than upload. __ is much higher download than upload rates.

Answer 10

ADSL (Asymmetric), VDSL (very-high-data-rate)

Question 11

__ DSL is used to provide the last mile of T1 service and uses two copper twisted pairs.

Answer 11

HDSL (high-rate)

Question 12

__ extends Fibre channel to Ethernet networks.

Answer 12

FCoE (Fibre Channel over Ethernet) since FC was designed for high-performance directly attached storage.

Question 13

__ integration is a common and phased approach for VoIP. The more long-term solution is __ integration.

Answer 13

PSTN PBX/VoIP integration: combines traditional and VoIP networks
IP PBX/PSTN integration:users must use VoIP phones, IP PBX is a soft-switch that routes calls

Question 14

__ is a helpful network path troubleshooting tool that shows each of the nodes from a local machine to a destination.

Answer 14

traceroute, part of ICMP and built on ping

Question 15

__ is a layer 2 error correction for serial connections.

Answer 15

HDLC (High-Level Data Link Control)

Question 16

__ is a layer 2 polling method for serial connections

Answer 16

SDLC (Synchronous Data Link Control)

Question 17

__ is a simple, weak authentication mechanism that sends the password in plaintext. This can be mitigated by sending a hash of the password but this is still vulnerable to a replay attack.

Answer 17

PAP (Password Authentication Protocol)

Question 18

__ is a TCP-based logon system with robust AAA, which is why Diameter came out.

Answer 18

TACACS (Terminal Access Controller Access Control System)

Question 19

__ is a UDP-based logon system mostly focused on authentication and doesn’t focus much on authorization and accounting.

Answer 19

RADIUS (Remote Authentication Dial In User Service)

Question 20

__ is a vast improvement over WEP, requires NIC replacement and AP replacement or firmware upgrade (AES-CCMP).

Answer 20

WPA2

Question 21

__ is an authentication mechanism that uses challenge/response authentication and is not vulnerable to a replay attack.

Answer 21

CHAP (Challenge-Handshake Authentication Protocol). It should be used instead of PAP wherever possible.

Question 22

__ is an authentication mechanism, an extension to PPP and supports a variety of authentication protocols.

Answer 22

EAP (Extensible Authentication Protocol

Question 23

__ is an IETF standard (RFC 2401) for establishing encrypted communication between users and devices. It offers sophisticated replay attack prevention and was issued as an open standard thus promoting multivendor interoperability.

Answer 23

IPsec VPN

Question 24

__ is an improved version of RADIUS which focuses on all three areas of AAA.

Answer 24

Diameter

Question 25

__ is an improvement over WEP (Wired Equivalent Privacy) and compatible with WEP hardware (TKIP).

Answer 25

WPA (Wi-Fi Protected Access)

Question 26

__ is built on ping and used to plot the path a packet took through the network.

Answer 26

traceroute, part of ICMP and built on ping

Question 27

__ is layer 2 network level authentication to authenticate a device, using MAC addresses (can be spoofed) and/or certificates.

Answer 27

802.1X. Using both would be ideal.

Question 28

__ is used to find whether a given Internet host is reachable or not.

Answer 28

Ping, part of ICMP

Question 29

__ layer convers bits into electrical signals or light impulses for transmission.

Answer 29

Physical Layer 1

Question 30

__ of the OSI model connects the physical part of the network with the abstract part?

Answer 30

Data link layer 2

Question 31

__ offers SCSI disk access via TCP/IP and is routed via IP.

Answer 31

iSCSI (Internet Small Computer System Interface)

Question 32

__ or __ which are forms of __ should be used for wireless networks where we should have mutual authentication. Otherwise if just using CHAP, the server authenticates the client but the client does not authenticate the server.

Answer 32

LEAP (Lightweight Extensible Authentication Protocol or PEAP (Protected Extensible Authentication Protocol), forms of EAP

Question 33

__ topology (layer 1) describes how systems are connected together e.g. bus ring, star.

Answer 33

Physical topology (layer 1)

Question 34

__ VPN is also known as Transport Mode.

Answer 34

Client-to-site VPN: provide remote access from a remote client such as a traveling sales rep or telecommuting employee.

Question 35

__ VPN is also known as Tunnel Mode.

Answer 35

Site-to-site VPN: provide connectivity to networks such as headquarters and a remote office. Gateway devices are located in front of both networks.

Question 36

__, given a MAC address, will find out what the corresponding IP address is.

Answer 36

RARP (Reverse Address Resolution Protocol)

Question 37

__, given an IP address, will find out what the corresponding MAC address is.

Answer 37

ARP (Address Resolution Protocol), so computer can determine the next hop

Question 38

105.255.255.255 is a Class __ __ broadcast address.

Answer 38

Class A directed broadcast

Question 39

150.5.255.255 is a Class __ __ broadcast address.

Answer 39

Class B directed broadcast

Question 40

802.11 supports which frequencies and speeds?

Answer 40

BAGN: 11,54,54,144+Mbps. 2.4,5,2.4,2.4/5

Question 41

802.11 supports which two physical layers?

Answer 41

IR: Infrared, requires line of sight
RF (Radio Frequency): FHSS (Frequency Hopping Spread Spectrum; police on CB radios used to hop to different frequencies every 10 seconds so that’s all you could hear), DSSS (Direct Sequence Spread Spectrum, if you have small channels break up data into pieces and transfer in lots of small chunks)

Question 42

A __ broadcast goes to every system on the LAN

Answer 42

limited broadcast. Will not get routed to any other networks

Question 43

A __ broadcast is where the entire address is set to all 1’s or 255.255.255.255.

Answer 43

limited broadcast

Question 44

A __ broadcast is where the host portion is set to all 1’s

Answer 44

directed broadcast

Question 45

A __ broadcast would be routed to every computer on the destination network.

Answer 45

directed broadcast

Question 46

A __ determines the path a packet will take.

Answer 46

IP address

Question 47

A __ firewall operates at layer 3.

Answer 47

packet filtering

Question 48

A __ firewall operates at layer 4.

Answer 48

stateful filtering

Question 49

A __ identifies a device by vendor code (first 3 bytes) and a unique identifier (last 3 bytes).

Answer 49

MAC address

Question 50

A __ is a layer 3 device that connects two different networks together and moves packets between networks.

Answer 50

Router

Question 51

A __ is a mapping of FCoE over the network.

Answer 51

vSAN

Question 52

A __ is a path through intermediate devices and bridges where there are multiple physical connections but virtually makes a single connection.

Answer 52

VC (Virtual Circuit)

Question 53

A __ is a physical topology that is not very scalable or fault tolerant since a single wire connects all of them together. If one goes down they all do.

Answer 53

bus. legacy Ethernet uses a bus

Question 54

A __ is a router (inline device connecting two devices together) with a filtering capability (ruleset)

Answer 54

firewall

Question 55

A __ is a single broadcast domain and defines LANs logically.

Answer 55

VLAN

Question 56

A __ is always at layer 1 of the OSI model.

Answer 56

Bit

Question 57

A __ is always at layer 2 of the OSI model.

Answer 57

Frame e.g. an Ethernet Frame

Question 58

A __ is always at layer 4 of the OSI model.

Answer 58

Segment

Question 59

A __ is information at layer 3 of the OSI model.

Answer 59

Packet

Question 60

A __ is like a bus where you connect the two endpoints together

Answer 60

ring

Question 61

A __ is often used to connect multiple bus networks.

Answer 61

tree

Question 62

A __ is the most common physical topology. It is very fault tolerant since there are multiple paths, scalable since easy to add more connections without interrupting others and easy to troulbeshoot.

Answer 62

star

Question 63

A __ is used to directly connect two similar devices (e.g. two computers, two switches, etc), otherwise there will be constant collisions.

Answer 63

crossover

Question 64

A __ is used to get to the next hop.

Answer 64

MAC address

Question 65

A __ is where two locations may be 20 miles apart which is good for a very local disaster (building fire). A __ is where two locations may be 200 miles apart which is best for large scale disasters.

Answer 65

MAN: Metropolitan Area Network, WAN: Wide Area network

Question 66

A __ line is great because it is reserved for use however when not in use you’re paying for bandwidth no one is utilizing. A __ line means you don’t need to know bandwith.

Answer 66

Dedicated line, leased line

Question 67

A __ NAT formally referred to as PAT.

Answer 67

Many to one NAT aka PAT (Port address translation)

Question 68

A __ NAT is a set of public addresses that are mapped and is not as scalable today since computers have many connections.

Answer 68

pool NAT

Question 69

A __ operates at layer 2 and can connect multiple LANs. It is useful in breaking up a large LAN into smaller LANs.

Answer 69

bridge

Question 70

A __ provides block-level network file system access and is equivalent to directly attached storage (such as an IDE, SATA or SCSI drive) via a network.

Answer 70

SAN (Storage Area Network)

Question 71

A __ provides file and directory access via Ethernet but there is no direct access to blocks or clusters.

Answer 71

NAS (Network Attached Storage)

Question 72

A __ virtual circuit is better for small data transfers or infrequent transfers. A __ virtual circuit is better for large or frequent data transfers.

Answer 72

SVC (Switched Virtual Circuit), PVC (Permanent Virtual Circuit, permanently keeps connection up rather than constantly creating and tearing down connections like SVC)

Question 73

A bridge is a layer __ device that breaks up an Ethernet domain into two different collission domains to increase performance.

Answer 73

Data link layer 2

Question 74

A computer will only use DNS if a __ is not present

Answer 74

static host file. Every OS supports a static host file which is where the computer goes first to translate a domain to IP address.

Question 75

A firewall without a ruleset, a firewall with an any-any ruleset, or a firewall with a default allow is a __.

Answer 75

Router

Question 76

A hub operates at layer __.

Answer 76

Physical layer 1 since it is just re-transmitting raw data.

Question 77

A layer __ switch can do load balancing because it is __ aware.

Answer 77

Layer 7, Application-aware

Question 78

A MAC address operates at layer __.

Answer 78

layer 2

Question 79

A modulator/demodulator that converts digital signals to analog signals, transmits over conventional telephone lines and then converts analog back to digital signals.

Answer 79

modem

Question 80

A packet filtering firewall operates at layer __.

Answer 80

3

Question 81

A proxy firewall or next gen firewall operates at layer __.

Answer 81

7

Question 82

A stateful firewall operates at layer __.

Answer 82

4

Question 83

A switch is a layer __ device that acts like a hub except that it probes each system and stores it’s MAC address so it can send communications directly from one computer to another which increases performance and security.

Answer 83

Layer 2

Question 84

A type of network that could be used by an electrical company to read meters at multiple locations in a small area without going to each location.

Answer 84

NAN (Neighborhood Area Network) e.g. so don’t have to worry about dogs/guns when he reads the meter at a house.

Question 85

All DSL requires a __ in the neighborhood.

Answer 85

POP (Point of Presence)

Question 86

An __ is connecting from your organization to only another organization (e.g. via T1, MPLS, VPN). What can be a problem with this?

Answer 86

Extranet. Your security is only as good as the other organization’s security e.g. Target’s extranet with HVAC vendor is how the adversary go to their POS systems.

Question 87

An example of a distance vector routing protocol where hop count is used as the metric is __

Answer 87

RIP (Routing Information Protocol)

Question 88

An example of a link state routing protocol which is not subject to routing loops, is more efficient, uses multiple parameters to determine the best route and only sends an update if there’s a change is __

Answer 88

OSPF (Open Shortest Path First)

Question 89

An IPv6 is __ bits or __ bytes.

Answer 89

128-bit or 16 bytes

Question 90

An unmanaged switch has no __ capability while a managed switch does. Both are layer __.

Answer 90

VLAN, Layer 2

Question 91

Any time you enter in a domain name you need to do a __ before you get to layer 3 in the protocol stack, otherwise you won’t get the IP so you won’t get routing.

Answer 91

forward lookup or gethostbyname

Question 92

As you go down a stack you __ a header. As you go up the stack you __ a header.

Answer 92

Add,Remove e.g. layer 1 processes layer 1 and then takes the header off and passes it up to layer 2

Question 93

ATM is designed for high speed networks sending small amounts of information, using 48 byte box plus 5 byte header so it’s very optimized and minimal chance of collisions. It uses layers __ and __.

Answer 93

Layers 2 & 3

Question 94

Autoconfiguration embeds the __ byte __ address into the __ portion of IPv6.

Answer 94

6 byte MAC address into the host portion of IPv6

Question 95

Client-to-site VPN which provides access from a remote client such as a traveling sales rep or telecommuting employee is also known as __.

Answer 95

Transport Mode

Question 96

Common __ solutions are iSCSI, Fibre Channel and FCoE.

Answer 96

SAN

Question 97

Convert the nibble 1101 to decimal.

Answer 97

13. Write each digit separate 1 1 0 1. Label number from right to left 0,1,2,3. Then put base (in this case 2) on bottom left of those numbers, multiply down, add across. ‘Binary,Hex to Decimal conversion - Drawing 4A’

Question 98

CSMA with __ is a one way link and not typically used. CSMA with __ is typically used and is where the computer monitors the line to see if another computer is transmitting, if not the computer transmits.

Answer 98

CSMA/CA (collision avoidance), CSMA/CD (collision detection)

Question 99

Draw the OSI and TCP/IP models

Answer 99

OSI vs TCP-IP - Domain 4 pg 15’ Also add hub/repeater, switch/bridge, router, firewall so I know the layers for those

Question 100

Ethernet is a baseband or shared media where data is transmitted using __

Answer 100

CSMA/CD