Module 3 part 1

Question 1

What are the security goals that Firewall protect ?

Answer 1

• Access Control

- Availability

Question 2

What is firewall ?

Answer 2

• device that monitors and filters traffic

Question 3

What are the two principles of ACL ?

Answer 3

• sequential processing

- deny all except when explicitly permitted

Question 4

What are the two types of ACL ?

Answer 4

• standard ACL

- extended ACL

Question 5

What is the standard ACL format ?

Answer 5

access-list all-number(1-99) (permit/deny) source mask

interface interface-number(E0, S0, S1) #name

ip access-group all-number(1-99) (in/out)

Question 6

Which TCP/IP layer odes a firewall operate ?

a. physical and above
b. data link layer and above
c. transport and above
d. network and above
e. application

Answer 6

data link and above

Question 7

what is the most important function of a firewall ?

a. encrypt data
b. redirect traffic
c. filter traffic
d. stop viruses and worms

Answer 7

filter traffic

Question 8

which one of there cannot be protected by a firewall ?

a. encrypted data
b. backdoor data
c. internal attacks
d. all of the above

Answer 8

all of the above

Question 9

which of these is a recent addition to firewall technology ?

a. packet filtering
b. circuit level gateway
c. stateful inspection
d. DMZ

Answer 9

stateful inspection

Question 10

which one of these is a host based firewall ?

a. Cisco PIX
b. NetScreen
c. Zone Alarm
d. Nortel Contivity

Answer 10

zone alarm

Question 11

What is the rule about port filtering?

a. block all incoming ports
b. block ICMP packets
c. block all unused ports
d. block all non-standard ports.

Answer 11

block all unused ports

Question 12

What is a bastion host ?

a. Translates addresses between private and public networks
b. Provides layer 3 protection
c. Sets up proxy clients and servers.
d. Defines a demilitarized zone network

Answer 12

Sets up proxy clients and servers.

Question 13

What is a NAT?

a. Translates IP addresses between private and public networks
b. Translates Ethernet addresses between private and public networks
c. Encrypts firewall addresses
d. All of the above

Answer 13

a. Translates IP addresses between private and public networks

Question 14

What is deep inspection?

a. Another term for NAT
b. Checking encrypted headers
c. Rejecting packets that are encrypted
d. Checking the data portion of the packet for hidden attacks

Answer 14

d. Checking the data portion of the packet for hidden attacks

Question 15

Which is one of Cisco’s recent addition to its firewall line of products?

a. Firewall-1
b. Firepower 2100 Series
c. PIX
d. NetGuar

Answer 15

b.Firepower 2100 Series

Question 16

What are the 6 limitations of packet filtering ?

Answer 16

1. address spiffing can break ACL
2. works only up to network layer
3. testing of complex ACL is hard
4. consume router resource
5. filtering of specific application commands is not possible: eg HTTP get or PUT
6. allows direct TCP connection between outside and inside network