2.0 - Basic Network Security Concepts

Question 1

SAFE stands for…

Answer 1

Security Access For Everyone

Question 2

What’s a PIN?

Answer 2

Place In (your) Network

Question 3

A forward proxy services requests from _____.

Answer 3

Internal users

Question 4

A reverse proxy services requests from ____.

Answer 4

External users on the internet

Question 5

True or false: reverse proxy servers can be the termination point for SSL/TLS connections.

Answer 5

True

Question 6

What is Cisco WSA?

Answer 6

Web Security Appliance, either a hardware or software proxy server.

Question 7

An IDS is not placed inline with the flow of traffic. Therefore…

Answer 7

it does not prevent malicious activity, merely detects it.

Question 8

An IDS/IPS installed on a server would be considered _____, whereas an IDS/IPS placed in front of a firewall would be considered _____.

Answer 8

host-based, network-based

Question 9

What is signature-based detection?

Answer 9

Using a database of known attack signatures or patterns to identify malicious activity.

Question 10

What are secure domains?

Answer 10

Concepts - management, security intelligence, compliance, segmentation, threat defense, and secure services.

SAFE key concept, p. 103

Question 11

AES-256 is a/an _______ algorithm.

Answer 11

encryption

Question 12

SHA-256 is a/an _______ algorithm.

Answer 12

hashing

Question 13

When a VPN sequences the packets in the flow, this is an example of _____.

Answer 13

anti-replay protection

Question 14

Name two secure tunnel protocols.

Answer 14

IPSec and SSL/TLS

Question 15

What is Cisco AnyConnect?

Answer 15

Host-based remote-access VPN software. Also known as Cisco Secure Client.

Question 16

What does ESP provide that AH does not?

Answer 16

Encryption

Question 17

Which protocol is used in IPSec over the internet, AH or ESP?

Answer 17

ESP

Question 18

Explain the fundamental difference between IPSec tunnel mode and transport mode.

Answer 18

In transport mode, the original IP header is left unencrypted. In tunnel mode, it is encrypted and a new IP header is added.

Question 19

A device which “monitors and controls incoming and outgoing network traffic based on predefined security rules and policies” is a _____.

Answer 19

firewall

Question 20

Cisco Firepower is what?

Answer 20

a next-generation firewall

Question 21

AMP, a feature of next-gen firewalls, stands for what?

Answer 21

Advanced Malware Protection

Question 22

“C2” refers to what?

Answer 22

Command and Control, a hacking term

Question 23

What is Cisco ISE and what service does it provide?

Answer 23

Identity Services Engine, and it provides network access control (NAC) services

Question 24

What is Cisco TrustSec?

Answer 24

a security framework that enables group-based access control

Question 25

What is WPA3 Enhanced Open used for?

Answer 25

It provides encryption without authentication on public wifi networks.

Question 26

What is WPS?

Answer 26

Wifi Protected Setup, a method for users to connect to wifi using a PIN. It is considered a security risk and should be disabled.

Question 27

What is war driving?

Answer 27

Driving around looking for wifi signals which can be later exploited.

Question 28

What is a rainbow table?

Answer 28

A table of preconfigured hash values for different passwords.