Security Technologies

Question 1

Firewall

Answer 1

Uses a set of rules to prevent or allow access

Question 2

Packet-Filtering Firewall

Answer 2

Permits or denies traffic based on packet header

Question 3

Stateful Firewall

Answer 3

Inspects traffic as part of a session

Question 4

NGFW

Answer 4

third gen firewall that conducts deep packet inspection and packet filtering (operates a 5, 6 and 7 of the OSI)

Question 5

Firewall Zone

Answer 5

Firewall interface in which you set up rules

Question 6

Unified Threat Management Device (UTM)

Answer 6

Combines firewall, router, intrusion detection/prevention system, anti-malware, and other features into a single device

Question 7

Telnet

Answer 7

plain text remote access; port 23

Question 8

RDG (Remote Desktop Gateway)

Answer 8

provides a secure connection using the SSL/TLS protocols for rdp

Question 9

Virtual Network Computing (VNC)

Answer 9

Designed for thin client architecture; Port 5900

Question 10

VDI

Answer 10

Hosts a desktop in a virtual environment

Question 11

In-Band Management

Answer 11

Managing devices with telnet or ssh inside the network

Question 12

out of band

Answer 12

managing outside the network; separate network; serial cable or console port is out of band

Question 13

CHAP (Challenge Handshake Authentication Protocol)

Answer 13

Sends the client a string of random text called a challenge which is then encrypted using a password and sent back to the server

Question 14

site to site vpn

Answer 14

connect two offices together

Question 15

Full tunnel vpn

Answer 15

routes and encrypts all network requests through the VPN connection back to the headquarters

Question 16

split tunnel vpn

Answer 16

routes and encrypts only the traffic bound for the headquarters over the VPN, and sends the rest of the traffic to the regular internet

Question 17

Clientless VPN

Answer 17

creates a secure connection through a web browser

Question 18

Layer 2 Forwarding (L2F)

Answer 18

Provides a tunneling protocol for the P2P protocol but also lacks native security and encryption features

Question 19

IPSec

Answer 19

Provides auth and encryption for VPN

Question 20

What are the 5 IPSec steps?

Answer 20

Key exchange request, IKE Phase 1, IKE Phase 2, Data transfer, Tunnel termination

Question 21

Managed Device

Answer 21

Any device that can communicate with an SNMP manager known as the management information base (MIB)

Question 22

Granular Trap

Answer 22

Sent trap messages get a unique objective identifier to distinguish each message as a unique message being received

Question 23

Management Information Base (MIB)

Answer 23

The structure of the management data of a device subsystem using hierarchical namespace containing object identifiers; don’t send redundant info just changes

Question 24

Verbose

Answer 24

SNMP traps may be configured to contain all the information

Question 25

SNMPv3

Answer 25

Provides three security enhancements which added integrity, authentication and confidentiality to the SNMP protocol

Question 26

System Logging Protocol (Syslog)

Answer 26

Sends system log or even messages to a central server, called a syslog server

Question 27

Syslog level 0

Answer 27

emergency

Question 28

1

Answer 28

Alert

Question 29

2

Answer 29

Critical

Question 30

3

Answer 30

Error

Question 31

Warning

Answer 31

4

Question 32

5

Answer 32

Notice

Question 33

Information

Answer 33

6

Question 34

Debugging

Answer 34

7