7A

Question 1

Why is it important to monitor networks?

Answer 1

When networks fail, the flow of information required by applications and business operations stop.

Question 2

What does “NMSs” stand for?

Answer 2

Network monitoring systems

Question 3

What do “NMSs” do?

Answer 3

Monitor the network for problems caused by overloaded or crashed
servers, network connections or other devices

Question 4

An NMS is used by network administrators typically to monitor what?

Answer 4

1. Availability of network services
2. Functionality of network interfaces
3. Status of critical hardware systems, CPU, memory, or bandwidth
4. Service or device availability: Is service or device up and responding to requests?
5. Network response time: How fast is each request processed?
6. Network route analytics: What network routes do requests travel through, which hops exist between client and server, are routes optimal?

Question 5

What is the purpose of an “NMS”?

Answer 5

1. Identifies and sends out alerts regarding issues affecting availability or functionality of network services.
2. Assist to ensure critical systems in network are available and
   functioning properly.

Question 6

What are some examples of suspicious activity that an NMS might find?

Answer 6

Suspicious activity may include network scanning, multiple connection
attempts to a network device from an unknown entity, or other reportable activity detected at any level.

Question 7

What are some examples of intrusion activities that an NMS might find?

Answer 7

Intrusion activity may include the presence of unusual or excessive activity on the network, or unauthorized individuals gaining full (root) or limited (user) access to a network device or information system.

Question 8

What are some tools that fall under NMS?

Answer 8

Intrusion Detection System (IDS), and Simple Network Management Protocol (SNMP.)

Question 9

What are the five basic functions that NMS provides?

Answer 9

1. Discover
2. Map
3. Monitor
4. Alert
5. Report

Question 10

What does the discover function of NMS do?

Answer 10

First function is to find devices (routers, switches, firewalls, printer, etc. ) on the network and if it can, determine how they are connected.

Question 11

When a network monitoring system completes the discovery process, it
automatically assigns what?

Answer 11

it automatically assigns an appropriate device role to each discovered device on the discovered device list

Question 12

The device roles assigned by NMS discovery function are ____ and ____ specific. (For example, what you monitor on a Cisco Router will differ from a Dell Server.)

Answer 12

type and vendor specific

Question 13

What does the map function of NMS do?

Answer 13

This function is to visualize your network. This is done by generating network maps.

Question 14

Network maps provide what?

Answer 14

They provide a clean and orderly representation of the wiring closet. Network maps display devices and up-to-date status.

Question 15

Many NMSs require a significant amount of _________ to create a network map.

Answer 15

Manual processing

Question 16

What does the monitor function of the NMS do?

Answer 16

This function keeps an eye on your network.

Question 17

NMSs provide _______ device roles that define what to monitor.

Answer 17

turn-key

Question 18

NMSs expose network administrators to a large selection of _________.

Answer 18

monitors

Question 19

As a starting point, network administrators want to monitor the “big
5” for any device on the network. What are these 5?

Answer 19

1. Ping activity and latency
2. CPU
3. Memory
4. Disk
5. Interface utilization

Question 20

A _____ is one of the most basic techniques that monitoring
software uses to test devices within a network.

Answer 20

ping

Question 21

Most network monitoring tools provide monitors for other hardware components like the ____ and ________ supplies in a switch, and even monitor the temperature in a wiring closet.

Answer 21

fans and power supplies

Question 22

Most network monitoring tools can also monitor network
services like….?

Answer 22

HTTP, TCP/IP and FTP

Question 23

The NMSs alert function notifies network
administrators when…?

Answer 23

Notifies administrators when something goes
wrong.

Question 24

___________ alerting enables network administrators to respond to problems before they impact users, or applications.

Answer 24

Threshold-based alerting

Question 25

__________ is an automated messaging system that sends messages
when an event affects a network device.

Answer 25

Syslog

Question 26

What does the alert function of the NMS do?

Answer 26

The NMSs notify network administrators when something goes
wrong.

Question 27

Some NMSs let network administrators configure _____________ when alerts are suspended. For example, to save energy costs, shut printers down at night.

Answer 27

blackout periods

Question 28

What does the report function of the NMS do?

Answer 28

This function deals with real-time and historical reporting.

Question 29

The report function of NMS enables network administrators to:

Answer 29

1. Validate that network designs are delivering the desired results
2. Expose trends that could impact the ability of the network to deliver the performance demanded by users, applications, and the mission.
3. Isolate and fix performance problems quickly

Question 30

NMSs report function delivers monitoring information in webpages called _________.

Answer 30

dashboards

Question 31

Dashboards are made up of ___________. For example, a top 10
CPU utilization view or a Top 10 Memory utilization view.

Answer 31

turn-key views

Question 32

In the NMS report function, network administrators can do what?

Answer 32

1. Scan summary dashboards to assess the health of the entire network and then drill down with detailed dashboards of specific devices and monitors to quickly isolate performance problems.
2. Create dashboards for the Help Desk, and counterparts managing systems and applications.

Question 33

What does IDS stand for?

Answer 33

Intrusion Detection System

Question 34

What does an IDS do?

Answer 34

An IDS detects anomalies with the aim of catching hackers before they do real damage to a network.

Question 35

How does IDS look for signs of attack in progress?

Answer 35

They scan, audit, and monitor the security infrastructure

Question 36

IDSs work by either looking for signatures of _______ attacks or ________ from normal activity. An IDS is placed on the network to monitor the traffic traversing it. This technology alerts system administrators an attack may be happening.

Answer 36

IDSs work by either looking for signatures of known attacks or deviations from normal activity. An IDS is placed on the network to monitor the traffic traversing it. This technology alerts system administrators an attack may be happening.

Question 37

What does SNMP stand for?

Answer 37

Simple Network Management Protocol

Question 38

What protocol is one of the most widely used for monitoring?

Answer 38

SNMP

Question 39

What does SNMP do?

Answer 39

It is a standard protocol that collects data from almost any network attached device, including routers, switches, wireless LAN Controllers, wireless access points, servers, printers and more.

Question 40

SNMP works by querying what?

Answer 40

“Objects”.

Question 41

What is an object in SNMP?

Answer 41

An object is something that an NMS collects information about.

Question 42

The key functions of the SNMP management tool
include what?

Answer 42

1. querying agents
2. getting replies from agents
3. establishing variables in agents
4. recognizing asynchronous events

Question 43

Within the NMS, the ________ is responsible for establishing
communications with SNMP agents.

Answer 43

SNMP manager

Question 44

How does NMS and SNMP work together?

Answer 44

The NMS navigates and manages the system, compiling, storing, and requesting status information; the SNMP software agents respond to its requests.

Question 45

SNMP software agents and NMS communicate via the _____________________.

Answer 45

SNMP common language

Question 46

The SNMP common language can provide….?

Answer 46

key information on configuration changes and statuses

Question 47

What does MIB stand for?

Answer 47

Management Information Base

Question 48

The Objects queried by SNMP are maintained in a….?

Answer 48

MIB

Question 49

What does MIB define?

Answer 49

A MIB defines all the information that is exposed by the managed device.

Question 50

The objects in a MIB are cataloged using a standardized….?

Answer 50

numbering system

Question 51

Each object has its own, unique ___________.

Answer 51

object identifier (OID)

Question 52

What is an MIB browser?

Answer 52

An MIB Browser allows network administrators navigate thru an MIB to find additional objects that they want to monitor on a device.

Question 53

Combined with a network management system, SNMP lets you….?

Answer 53

View, monitor, and manage the nodes via one interface. This interface usually has batch command and automatic alert functionalities, stripping away the need for grueling, manual tasks.