Chapter 12: Advanced Networking Devices

Question 1

Dedicated Server

Answer 1

A computer that only acts as a server, never a client.

Question 2

Peer-to-Peer network

Answer 2

Any system can act as a server, a client, or both, depending on how you configure them.

Question 3

Peer-to-Peer Applications (P2P)

Answer 3

Act as both client and server (uTorrent and shit)

Question 4

Virtual Private Network (VPN)

Answer 4

• A network configuration that enables a remote user to access a private network via the Internet.
• Use tunneling

Question 5

Point-to-Point Tunneling Protocol (PPTP)

Answer 5

• An advanced version of PPP that handles VPNs.

- Used on Windows.

Question 6

Routing and Remote Access Service (RRAS)

Answer 6

A special remote access server program on which a PPTP endpoint is placed in Microsoft networks.

Question 7

Web browser performance on a VPN

Answer 7

Hella fucking slower

Question 8

Host-to-Site

Answer 8

Type of VPN connection where a host logs into a remote network as if it were any other local resource of that network.

Question 9

Layer 2 Tunneling Protocol (L2TP)

Answer 9

A VPN protocol that uses IPsec

Question 10

VPN Concentrator

Answer 10

The new endpoint of the local LAN in L2TP

Question 11

Host-to-Host

Answer 11

Type of VPN connection in which a single host establishes a link with a remote, single host.

Question 12

Site-to-Site

Answer 12

A type of VPN connection using two Cisco VPN concentrators to connect two separate LANs permanently.

Question 13

SSL VPN

Answer 13

A type of VPN in which clients connect to the VPN server through a web browser, with the traffic secured by SSL

Question 14

Portal SSL VPN

Answer 14

A client accesses the VPN and is presented with a secure web page. (Like myucsc and shit)

Question 15

Tunnel SSL VPN

Answer 15

The client web browser runs some kind of active control, such as Java or Flash, and gains much greater access to the network.

Question 16

Managed Switch

Answer 16

Switches that have extra programming and logic to handle switching, security, and many other functions

Question 17

Console Port

Answer 17

Connection jack in a switch used to connect a computer that will manage the switch.

Question 18

Out-of-Band Management

Answer 18

Method to connect to and administer a network device. An example is connecting a computer to the console port of a switch.

Question 19

VLAN

Answer 19

Enables a single switch to support multiple logical broadcast domains

Question 20

Trunking

Answer 20

The process of transferring VLAN traffic between switches

Question 21

Trunk Port

Answer 21

A port on a switch configured to carry all traffic between switches in a LAN

Question 22

Native VLAN

Answer 22

The specified VLAN designation that will be assigned to all untagged frames entering a trunk port in a switch

Question 23

IEEE 802.1Q

Answer 23

Trunk standard that enables you to connect switches from different manufacturers

Question 24

VLAN Trunking Protocol (VTP)

Answer 24

Cisco proprietary protocol to automate the updating of multiple VLAN switches.

Question 25

3 states of VTP

Answer 25

1) server
2) client
3) transparent: tells it not to update

Question 26

DHCP Relay

Answer 26

A router process that allows DHCP communications to cross from one network to another.

Question 27

IP Helper

Answer 27

Command used in Cisco switches and routers to enable, disable, and manage internetwork forwarding of certain protocols.

Question 28

Multilayer Switch

Answer 28

Switch that works on multiple layers of the OSI model.

Question 29

Load Balancing

Answer 29

The process of taking several servers and making them look like a single server, for purposes of spreading shit out.

Question 30

Round Robin DNS

Answer 30

Assigning multiple IPs to the same FQDN to share the load of DNS requests

Question 31

Quality of Service (QoS)

Answer 31

Policies that prioritize traffic/bandwidth based on certain rules.

Question 32

Traffic Shaping

Answer 32

Controlling the flow of packets into or out of the network according to the type of packet or other rules.

Question 33

Shapers

Answer 33

Network devices that can implement traffic shaping

Question 34

Port Bonding

Answer 34

The logical joining of multiple redundant ports and links between two network devices. Basically to improve performance.

Question 35

Link Aggregation Control Protocol (LACP)

Answer 35

IEEE specification of certain features and options to automate the negotiation, management, load balancing, and failure modes of aggregated ports.

Question 36

Intrusion Detection System (IDS)

Answer 36

An application that inspects packets looking for intrusions. Finds the intrusions after they have already hit.

Question 37

Network-Based IDS (NIDS)

Answer 37

• Multiple sensors placed around the network that report to a central app that reads a signature file to detect weird stuff.
• Signature-based IDS

Question 38

Host-Based IDS (HIDS)

Answer 38

• Software running on individual systems that monitors for out of the ordinary events.
• Behavior-based IDS

Question 39

Intrusion Prevention System (IPS)

Answer 39

Sits directly in the flow of network traffic to stop intrusions.

Question 40

Port Mirroring

Answer 40

Copying data from any or all physical ports on a switch to a single physical port.

Question 41

Proxy Server

Answer 41

A device that fetches Internet resources for a client without exposing that client directly to the Internet.