Chapter 3: Network Technologies and Tools Aconyms and Defintions

Question 1

MAC

Answer 1

Media Access Control

Question 2

IP

Answer 2

Internet Protocol

Question 3

TCP

Answer 3

Transmission Control Protocol

Connection-oriented protocol that provides guarenteed delivery

Question 4

UDP

Answer 4

User Datagram Protocol

Connectionless protocol that provides “best effort” delivery

Question 5

FTP

Answer 5

File Transfer Protocol

Uploads and downloads files to and from an FTP server.
Transmits data in clear text

Question 6

TFTP

Answer 6

Trivial File Transfer Protocol

Used to transfer a smaller amounts of data, such as when communicating with network devices

Question 7

SSL

Answer 7

Secure Sockets Layer

Primarily used to secure HTTP traffic as HTTPS
Has been compromised and is not recommended for use

Question 8

TLS

Answer 8

Transport Layer Security

Replacement for SSL
Secure HTTP traffic as HTTPS

Question 9

IPsec

Answer 9

Internet Protocol Security

Used to encrypt IP traffic

Question 10

SSH

Answer 10

Secure Shell

Encrypts data traffic it transittransit and can be used to encrypt other protocols such as FTP

Question 11

SCP

Answer 11

Secure Copy

Based on SSH and used to copy and encrypted files over a network

Question 12

SFTP

Answer 12

Secure File Transfer Protocol

Secure implementation of FTP
And extinction of secure shell using SSH to transmit the files in an encrypted format

Question 13

FTPS

Answer 13

File Transfer Protocol Secure

Another secure implementation of FTP.
It uses TLC to encrypt FTP traffic

Question 14

SMTP

Answer 14

Simple Mail Transfer Protocol

Transfers, mail between clients and SMTP servers

Question 15

SMTPS

Answer 15

Simple Mail Transfer Protocol Secure

Adds TLS encryption

Question 16

POP3

Answer 16

Post Office Protocol

Transfers emails from servers to end users

Question 17

IMAP

Answer 17

Internet Message Access Protocol

Used to store email on a mail server and it allows you to organize and manage email and folders on the server

Question 18

HTTP

Answer 18

Hyper Text Transfer Protocol

Transmits web traffic between web service and browsers

Question 19

HTTPS

Answer 19

Hyper Text Transfer Protocol Secure

Adds TLS encryption to protect the data

Question 20

SPF

Answer 20

Sender Policy Framework

Uses DNS records to define which IP addresses are authorized to send emails on behalf of a domain

Question 21

DKIM

Answer 21

DomainKeys Identified Mail

Uses public key photography to sign in verify an emails domain and content

Question 22

DMARC

Answer 22

Domain-based Message Authentication, Reporting, and Conformance

Builds on top of SPF and DKIM by allowing domain owners to set policies for how to handle emails that fail authentication checks

Question 23

AD DS

Answer 23

Microsoft Active Directory Domain Services

Database of objects that provides a central access point to manage users, computers, and other directory objects.

Question 24

LDAP

Answer 24

Lightweight Directory Access Protocol

Specifies the formats and methods used to query directories, such as Microsoft AD DS

Question 25

LDAPS

Answer 25

Lightweight Directory Access Protocol Secure To protect LDAP it encrypts data with TLS

Question 26

RTP

Answer 26

Real-time Transport Protocol Delivers audio and video of IP networks

Question 27

VoIP

Answer 27

Voice over Internet Protocol Communications, streaming media, video teleconferencing applications, and devices using web-based push to talk features

Question 28

SRTP

Answer 28

Secure Real-time Transport Protocol Provides encryption, message authentication, and integrity for RTP

Question 29

SIP

Answer 29

Session Initiation Protocol Used to initiate, maintain, and terminate voice, video, and messaging sessions. Uses request and response messages (text) when establishing a session

Question 30

GPO

Answer 30

Group Policy Object

Question 31

RDP

Answer 31

Remote Desktop Protocol Used to connect to others systems from remote locations.

Question 32

NTP

Answer 32

Network Time Protocol Most commonly used protocol for time synchronization, allowing their systems to synchronize their time to within tens of milliseconds.

Question 33

DHCP

Answer 33

Dynamic Host Configuration Protocol Dynamically assigned IP addresses to host Also assigns other TCP and IP information such as subnet mask, default gateways, DNS server addresses and much more.

Question 34

ISPs

Answer 34

Internet Service Provider Companies who provide Internet service

Question 35

IANA

Answer 35

Internet Assigned Numbers Authority

Question 36

IETF

Answer 36

Internet Engineering Task Force

Question 37

DNS

Answer 37

Domain Name System For domain resolution, resolves hostnames to IP address

Question 38

A

Answer 38

Host Record A record that holds the host name and IPv4 address and is the most used record in a DNS server

Question 39

AAAA

Answer 39

Record that holds the host name for IPv6 address.

Question 40

MX

Answer 40

Mail Exchange A record that identifies a mail server used for mail.

Question 41

CNAME

Answer 41

Canonical Name or Alias Allows a single system to have multiple names associated with a single IP address.

Question 42

SOA

Answer 42

Start of Authority Records include information about a domain or zone and some of its settings

Question 43

TTL

Answer 43

Time to Live A setting used to determine how long to cache DNS results TTL times are in seconds, and lower times cause clients to renew the records more often.

Question 44

DNSSEC

Answer 44

Domain Name System Security Extensions Used to prevent DNS cache poisoning A suite of extensions to DNS that provides validation for DNS responses.

Question 45

RRSIG

Answer 45

Resource Record Signature Referred to as a digital signature and provides data, integrity and authentication for DNS replies

Question 46

RSTP

Answer 46

Rapid Spanning Tree Protocol Provides both broadcast storm prevention and loop prevention for switches

Question 47

BPDU

Answer 47

Bridge Protocol Data Unit Messages that STP sends to detect loops

Question 48

Edge Port

Answer 48

A switch port connected to a device, such as computer, server, or printer.

Question 49

BPDU Guard

Answer 49

Bridge Protocol Data Unit Guard Monitors the ports for unwanted BPDU messages

Question 50

ACLs

Answer 50

Access Control Lists Rules implemented on routers and on firewalls to identify what traffic is allowed and what traffic is denied.

Question 51

Implicit Deny

Answer 51

Dictates that all traffic that isn’t explicitly allowed is explicitly denied

Question 52

Route Command

Answer 52

A command used to display or modify systems, routing table on both Windows and Linux systems.

Question 53

SNMP

Answer 53

Simple Network Management Protocol Monitors and manages network devices such as routers or switches SNMPv3 Encrypts credentials before sending them over the wire.

Question 54

Firewall

Answer 54

Filters, incoming and outgoing traffic for a single host or between networks

Question 55

Host-based Firewall

Answer 55

Monitors traffic going in and out of a single host, such as a server or workstation —monitors traffic passing through the NIC

Question 56

Network-Based Firewall

Answer 56

Protects an entire network, and usually a network appliance meaning sold as a hardware unit that already contains all of the software necessary to run as a firewall.

Question 57

Stateless Firewalls

Answer 57

Uses rules implemented in access control lists to identify allowed and blocked traffic Treats each network packet that they see as a new event and don’t track any information

Question 58

Stateful Firewall

Answer 58

Inspect traffic and makes decisions based on the traffic context or state keeping track of established sessions inspects traffic based on a state within a session and it blocks traffic that isn’t a part of an established session.

Question 59

WAF

Answer 59

Web Application Firewall A firewall specifically designed to protect a web application, usually placed between the web server and the web server clients.

Question 60

NGFW

Answer 60

Next-Generation Firewall An advanced firewall that performs deep packing inspection, adding application level inspection as a core feature.

Question 62

Fail-open

Answer 62

The system allows everything to pass through the system when it fails

Question 63

Fail-closed

Answer 63

A system allows nothing to pass through the system when it fails

Question 64

Intranet

Answer 64

An Internet is an internal network Used by people to communicate and share content with each other

Question 65

Extranet

Answer 65

Part of a network that can be accessed by authorized entities from outside of the network

Question 66

DMZ

Answer 66

Demilitarized Zone Know as screened subnet, a security zone between a private network in the Internet. Providing a layer of protection for these Internet facing servers while allowing clients to connect to them.

Question 67

CA

Answer 67

Certificate Authority

Question 68

NAT

Answer 68

Network Address Translation A protocol that translates public IP addresses to private IP addresses and private IP addresses back to public

Question 69

PAT

Answer 69

Port Address Translation A commonly used form of NAT.

Question 70

Static NAT

Answer 70

Static Network Address Translation Uses a single public IP address in a one-to-one mapping

Question 71

Dynamic NAT

Answer 71

Dynamic Network Address Translation Uses multiple public IP addresses in a one-to-many mapping and decides which public IP address to use based on load.

Question 72

SCADA

Answer 72

Supervisory Contoel and Data Acquisition

Question 73

Air Gap

Answer 73

A gap of air between an isolated system and other systems.

Question 74

VLAN

Answer 74

Virtual Local Area Network Used by switches to segment traffic between logical groups of users or computers

Question 75

Proxy Server

Answer 75

Used to forward request for services for clients also can improve performance by caching content and some proxy servers can restrict users access to inappropriate websites by filtering content.

Question 76

Content Filtering

Answer 76

Allows organizations to create block rules that restrict web use.

Question 77

Reverse Proxy

Answer 77

Accepts requests from the Internet, typically for a single web server. It appears to clients as a web server, but is forwarding the requests to the web server and serving the pages returned by the web server.

Question 78

UTM

Answer 78

Unified Threat Management A single solution that combines multiple security controls Goal is to provide better security while also simplifying management requirements

Question 79

Jump Server

Answer 79

Aka Jump Box A hard server used to access and managed devices in a different securities zone

Question 80

ZTNA

Answer 80

Zero Trust Network Access A philosophy that’s end goal is to achieve threat scope reduction, decreasing the risk to the organization.

Question 81

PEP

Answer 81

Policy Enforcement Point A system used zero-trust environment when a user or system wants to access a resource.

Question 82

Control Plane

Answer 82

A network where communications are used to control and configure the network.

Question 83

Data Plane

Answer 83

Communications used by end users and software to communicate with each other take place here.

Question 84

PE

Answer 84

Policy Engine Decides whether to grant access to a resource for a given subject

Question 85

PA

Answer 85

Policy Administrator Responsible for communicating the decisions made by the PE to the tools on the network

Question 86

PDP

Answer 86

Policy Decision Point PE and PA together

Question 87

3 Data Plane Components

Answer 87

Subject System Enterprise Resource

Question 88

SASE

Answer 88

Secure Access Service Edge Builds on Zero Trust •Firewall services •Secure web gateway •Anti-malware •Intrusion Prevention Services •Cloud access service broker (CASB) •Data Loss Prevention (DLP)

Question 89

OSI MODEL

Answer 89

Physical, Data Link, Network, Transport, Session, Presentation, Application. (Please Do Not Throw Sausage Pizza Away)