Book-Cards-Pt2 - Sheet 1

Question 1

qtext

Answer 1

answer

Question 2

The length of time a computer is allowed to use a dynamic Internet Protocol (IP) address provide by a DHCP server is known as a .

Answer 2

Lease time

Question 3

True/False: A network collision happens when two devices attempt to communicate on the same physical segment at the same time.

Answer 3

TRUE

Question 4

True/False: A firewall can permit, deny, encrypt, decrypt, and proxy all computer traffic that flows through it.

Answer 4

TRUE

Question 5

True/False: Firewalls are not usually a combination of hardware and software.

Answer 5

FALSE

Question 6

Which type of security device or software employs a redirection device known as a honeypot?

Answer 6

Intrusion prevention system

Question 7

Which type of firewall keeps track of existing connections passing through it?

Answer 7

Stateful

Question 8

If you wanted to ensure that your firewall could block inflammatory email, which type of service would you look for?

Answer 8

Content filtering

Question 9

What is a firewall’s list of rules, which it uses to block traffic?

Answer 9

Access control list (ACL)

Question 10

If you want to allow remote access to 500 users, which type of device is recommended?

Answer 10

A VPN concentrator

Question 11

What is a security zone that allows public traffic but is isolated from the private network called?

Answer 11

DMZ

Question 12

Which unsecure protocol uses port 80 by default?

Answer 12

HTTP

Question 13

What is 192.168 in binary?

Answer 13

11000000.10101

Question 14

What port number does Secure Shell (SSH) use by default?

Answer 14

22

Question 15

Logging, notification, and shunning are what types of reactions from what type of security device?

Answer 15

Passive reactions from an IDS

Question 16

True/False: A demilitarized zone (DMZ) is a network segment that is neither public nor local, but halfway between.

Answer 16

TRUE

Question 17

You add a new cable to your network. What document do you update?

Answer 17

Wiring schematics

Question 18

True/False: An intrusion detection system replaces a firewall on your network.

Answer 18

FALSE

Question 19

True/False: An intrusion detection system (IDS) can detect attacks within encrypted traffic.

Answer 19

FALSE

Question 20

True/False: An intrusion detection system (IDS) monitors network traffic, looking for signs of an intrusion.

Answer 20

TRUE

Question 21

192.168.10.0/28 is an example of which kind of notation?

Answer 21

CIDR

Question 22

Which terminal emulation program is insecure because it does not encrypt any data, including usernames and passwords?

Answer 22

Telnet

Question 23

Which network topology has the most physical connections per host, which means it will have the least collisions?

Answer 23

Mesh

Question 24

In a Class C address, a network ID is how many bits?

Answer 24

24

Question 25

100BaseTF uses what type of cable medium?

Answer 25

Ethernet over fiber

Question 26

True/False: A multimode fiber-optic cable (MMF) is terminated on a punch-down block.

Answer 26

FALSE

Question 27

A UTP cable running 1000Mbps can be a maximum distance of                                       .

Answer 27

100 meters

Question 28

How can you verify that your DMZ is allowing TCP ports through?

Answer 28

Telnet to the ports in question on the DMZ server.

Question 29

True/False: A dipole is an omnidirectional antenna.

Answer 29

TRUE

Question 30

True/False: A parabolic is a type of omnidirectional antenna.

Answer 30

FALSE

Question 31

A network administrator is going to implement a packet filter on a network for Internet connections. What port must be allowed through the firewall for users to connect to secure websites?

Answer 31

443

Question 33

True/False: A repeater can be used to cache web pages for future retrieval.

Answer 33

FALSE

Question 34

True/False: A proxy service can be used to cache web pages for future retrieval.

Answer 34

TRUE

Question 35

What device can measure the time a signal goes down and back a cable?

Answer 35

TDR

Question 36

What device connects a local area network (LAN) to a T1 circuit?

Answer 36

Channel service unit/data service unit (CSU/DSU)

Question 37

An OTDR is used to test what?

Answer 37

Fiber

Question 38

When all routers in an autonomous system agree about the path from one point to another, the network is said to be what?

Answer 38

Converged

Question 39

Which two protocols allow secure access to a VPN?

Answer 39

PPTP and IPSec

Question 40

What tool is used to connect an RF-45 to a UTP?

Answer 40

Crimper

Question 41

What wire pairs connect to a 66-block from the telecommunication company?

Answer 41

25 pair

Question 42

Implementing policies and procedures that define how corporate information is kept confidential and training employees on these procedures can help prevent what?

Answer 42

Social engineering

Question 43

At what layer of the Open Systems Interconnect (OSI) model does a router function?

Answer 43

Network

Question 44

Which TCP/IP well-known port number identifies Simple Mail Transfer Protocol (SMTP)?

Answer 44

25

Question 45

Which routing protocol uses a next hop as a metric in deciding how to route traffic?

Answer 45

RIP

Question 46

True/False: 156.144.226.123 is a valid IP address.

Answer 46

TRUE

Question 47

Which device monitors inbound and outbound network connections in order to identify suspicious activity?

Answer 47

IDS

Question 48

True/False: The Transport layer converts digital data into electronic signals to be put on a wire.

Answer 48

FALSE

Question 50

True/False: Internet Protocol Security (IPSec) encrypts data between web browsers and web servers.

Answer 50

FALSE

Question 51

Which device or software can identify and react to an attack by shutting down a port or dropping certain types of packets?

Answer 51

IPS

Question 52

True/False: Using Domain Name Service (DNS) will segment a network.

Answer 52

FALSE

Question 53

True/False: TCP is connection-oriented, and UDP is unreliable.

Answer 53

TRUE

Question 54

When configuring a wireless access point, what should you considering when selecting a channel?

Answer 54

Select a channel farthest from that of any other AP in the area.

Question 55

What does SNMP provide?

Answer 55

Automated alerts and reports on network devices.

Question 56

Your boss tells you to block certain ports on your firewall. What documentation do you need to update?

Answer 56

Policies, procedures, and configurations

Question 57

You need to provide inter-VLAN communication. What device do you need?

Answer 57

A Layer 3 switch (router).

Question 58

True/False: Antivirus (AV) software will help protect a computer from hackers.

Answer 58

FALSE

Question 59

True/False: Antivirus (AV) software will help protect a computer from Trojan horses.

Answer 59

TRUE

Question 60

A packet-filtering firewall operates at which layers of the OSI model?

Answer 60

Network and Transport

Question 61

True/False: A packet-filtering firewall operates at the Network and Data Link layers of the OSI model.

Answer 61

FALSE

Question 62

Which networking topology connects computers via a central device?

Answer 62

Star

Question 63

True/False: A ring networking topology connects computers via a central hub.

Answer 63

FALSE

Question 64

True/False: A cable modem selectively forwards data packets.

Answer 64

FALSE

Question 65

True/False: A bridge can selectively forward data packets.

Answer 65

TRUE

Question 66

True/False: A bridge is a network device that operates at Layer 2 of the OSI model.

Answer 66

TRUE

Question 67

True/False: A switch is a network device that operates at Layer 2 of the OSI model.

Answer 67

TRUE

Question 68

True/False: A hub and a repeater operate at Layer 2 of the OSI model.

Answer 68

FALSE

Question 69

True/False: A hub and a switch operate at the same layer of the OSI model.

Answer 69

FALSE

Question 70

True/False: A hub and router operate at the same layer of the OSI model.

Answer 70

FALSE

Question 71

True/False: A router and a bridge operate at the same layer of the OSI model.

Answer 71

FALSE

Question 72

What is 01100011.00011010 in decimal?

Answer 72

99.26

Question 73

A company wants to have an intranet. Where would the intranet web server be located in the network?

Answer 73

In the local area network (LAN), usually behind the firewall to the WAN

Question 74

True/False: A network administrator wants all computers protected from Trojan horses and worms. Implementing a firewall will accomplish this requirement.

Answer 74

FALSE

Question 75

HTTPS uses what TCP destination port number?

Answer 75

443

Question 76

True/False: Virtual local area networks (VLANs) create collision domains.

Answer 76

FALSE