Web Firewall, Flood Gate, Block Traffic Pvt IP, Create Block Rules Flashcards
Why block all outgoing traffic from private IP addresses?
Typically, there is no need to block outgoing traffic from private IPs in a network, as this traffic is normal. Blocking outgoing traffic doesn’t address security threats at the border router.
Memory Hook: “Outgoing Ok” - Outgoing private IP traffic is usually okay, not a threat.
What is the role of a flood guard on switches?
Flood guards prevent MAC flooding on switches by limiting the number of MAC addresses learned per port, protecting against certain DoS attacks. Not related to IP spoofing or border router security.
Memory Hook: “Switch Guard, Not Net Guard” - Flood guards protect switches, not network borders.
What does a web application firewall (WAF) do?
A WAF protects web applications by filtering harmful web traffic, monitoring, and blocking attacks like SQL injection and cross-site scripting. It does not handle IP spoofing at the network level.
Memory Hook: “Web Watcher” - WAFs watch over web apps, not the network border.
Why block all incoming traffic from private IP addresses on a border router?
Incoming traffic from private IP addresses on the internet is likely spoofed, as these addresses are non-routable and reserved for internal network use. Blocking them prevents spoofing attacks.
Memory Hook: “Private Block Party” - No entry for private IPs pretending to be someone else.
