Domain 4. Communication and Network Security

Question 1

At least two devices that are connected to each other.

Answer 1

Network

Question 2

Common rules of network communication. A standard set of rules that are understood, confirmed to, and abided by so that two or more devices on a network can communicate.

Answer 2

Protocols

Question 3

Ability of native IP networks to carry non-IP traffic via what are known as converged protocols.

Answer 3

Convergence

Question 4

Private Subnets of IPv4

Answer 4

10.0.0.0

172.16.x.x - 172.31.x.x

192.168.0.0

Question 5

Allows Fibre Channel communications to be transmitted over Ethernet networks. It is primarily used in data centers to consolidate storage and data networking.

Answer 5

Fibre Channel over Ethernet (FCoE)

Question 6

Used to transport SCSI commands over IP networks, enabling remote storage access and management.

Answer 6

Internet Small Computer Systems Interface (iSCSI)

Question 7

Enables voice communications over IP networks, replacing traditional phone lines with internet-based calls.

Answer 7

Voice over Internet Protocol (VoIP)

Question 8

Is a private telephone network that supports internal communications, usually in the context of an organization or a place like a hotel.

Answer 8

Private Branch Exchange (PBX)

Question 9

Is essentially the traditional, copper-wire-based telephone network that allows people and businesses to communicate with each other.

Answer 9

Public Switched Telephone Network (PSTN).

Question 10

Allows people and businesses to communicate via an internet connection, instead of a traditional copper-wire-based phone line.

Answer 10

VoIP

Question 11

A protocol for remote direct memory access (RDMA). This protocol is designed to provide access to memory as quickly as possible across the network. It is commonly used in applications like machine learning.

Answer 11

InfiniBand

Question 12

A protocol for connecting CPUs to other components, such as devices and memory, as quickly as possible.

Answer 12

Compute Express Link

Question 13

This is the secure version of RTP, which supports encryption, authentication, integrity, and replay attack protection. Note that RTP is mainly used for streaming voice and video over IP, with no existing security in it. Also provides good bandwidth optimization, low resource requirements, and is independent from underlying protocols. The full description of its operation is described in RFC 3711.

Answer 13

Secure Real-time Transport Protocol (SRTP)

Question 14

Is responsible for initiating, maintaining, and terminating voice and video sessions. It can also support a direct connection between PBX and public telephony networks.

Answer 14

Session Initiation Protocol (SIP)

Question 15

Sends fragmented packets that overlap, causing reassembly issues.

Answer 15

Overlapping fragments

Question 16

Sends malformed fragmented packets with overlapping offsets.

Answer 16

Teardrop

Question 17

Sends ICMP requests to broadcast address with spoofed source IP.

Answer 17

Smurf

Question 18

Similar to Smurf, but uses UDP echo packets.

Answer 18

Fraggle

Question 19

Is a TCP/IP-based utility that is used to determine if a network host is “alive” or available and to measure response time.

Answer 19

Ping

Question 20

Is a TCP/IP-based utility that takes ping a step further and actually maps a network connection from one host to another. Its usefulness comes in that it shows every hop traversed between the two locations. An attacker can take advantage of that to map a target network.

Answer 20

Traceroute

Question 21

Protocol which supports IP protocol by allowing network devices (e.g., routers) to send
error and control messages and enables Ping & Traceroute utilities

Answer 21

ICMP

Question 22

Network protocol that enables a DHCP server to dynamically or statically assign IP
addresses to devices as they are added to the network

Answer 22

DHCP

Question 23

Displays current TCP/IP network configuration on an endpoint – for example a computer - providing the IP & MAC addresses of any Network Interface Cards in the system plus the gateway, DHCP and DNS IP addresses.

Answer 23

ipconfig

Question 24

Used to query databases that store the registered users of an internet resource like a domain name. And also find out who is the owner of a domain name.

Answer 24

WHOIS

Question 25

Used to query DNS – domain name systems – to get all the details on a domain name such as the name servers the domain name uses, the mail server, etc.

Answer 25

Dig

Question 26

A free and open source terminal emulator, serial console, and network file transfer application. It supports several network protocols, including SCP, SSH, Telnet, rlogin, and raw socket connection.

Answer 26

Putty

Question 27

A free and open source network scanner used to discover hosts and services on a computer network by sending packets and analyzing the responses.

Answer 27

NMAP

Question 28

Is an open source password cracking tool and is available for many operating systems.

Answer 28

John the Ripper

Question 29

A command-line network utility that displays network connections for TCP and UDP (both incoming and outgoing), routing tables, and a number of network interface (network interface controller or software-defined network interface) and network protocol statistics.

Answer 29

Netstat

Question 30

Used for querying the Domain Name System (DNS) to obtain domain name or IP address mapping or other DNS records.

Answer 30

Nslookup

Question 31

Simply prompts for a user ID and password when establishing a connection. Sadly, passwords are transmitted in plaintext, and the user will never be prompted to change their password, as it will be static in nature.

Answer 31

Password Authentication Protocol (PAP)

Question 32

Is an improved version of PAP. Passwords are encrypted during transmission, while challenges are sent in regular intervals behind the scenes to ensure that an intruder has not hijacked or otherwise compromised a session.

Answer 32

Challenge Handshake Authentication Protocol (CHAP)

Question 33

Allows vendors to adapt the latest authentication technologies, like smart keys and digital certificates, to their products. In fact, due to its inherent strengths, It can also be embedded into other things, like wireless security, where it’s used with WPA2 for purposes of connecting to wireless networks and authenticating users at the same time.

Answer 33

Extensible Authentication Protocol (EAP)

Question 34

isn’t actually a standalone authentication protocol, it’s just a wrapper for EAP. Encapsulates EAP within an encrypted TLS - Transport Layer Security Tunnel - thus encrypting any EAP traffic that is being sent across a network.

Answer 34

Protected Extensible Authentication Protocol (PEAP)

Question 35

Maps IP Addresses to MAc Addresses

Answer 35

ARP

Question 36

Maps MAC addresses to IP addresses

Answer 36

RARP

Question 37

In its simplest form, It changes IP addresses to other IP addresses. For example, a private, internal, and non-routable IP addresses to a routable IP address.

Answer 37

Network Address Translation (NAT)

Question 38

Is an inherent part of NAT, and it helps keep track of individual internet requests using unique port assignments for each request.

Answer 38

Port Address Translation (PAT)

Question 39

Is an application-layer protocol that allows a user to connect to and access network resources. RADIUS was developed to support dial-in networking and provides authentication, authorization, and accounting (AAA).

Answer 39

Remote Authentication Dial-In User Service (RADIUS)

Question 40

Was developed by CISCO as an extension of TACACS and an improvement over RADIUS. Unlike RADIUS (which uses UDP). Uses TCP and encrypts all the transmitted packets, while RADIUS only poorly obfuscates user passwords.

Answer 40

Terminal Access Controller Access Control System Plus (TACACS+)

Question 41

is the successor to and an enhanced version of RADIUS. Adds improved security features, such as EAP, which provides a much more secure and robust authentication of users.

Answer 41

Diameter

Question 42

Managing network devices through the same network that they are used to transmit user or application data (less secure - no physical segmentation)

Answer 42

In-band Management

Question 43

Managing network devices using a dedicated network that is separate from the main network (more secure)

Answer 43

Out-of-band Management

Question 44

Extreme form of segmentation where one segment of the network is completely isolated from all others physically and logically

Answer 44

Air-gapped

Question 45

Allows a single physical network to be partitioned into multiple smaller logical networks

Answer 45

Virtual Local Area Networks (VLANs)

Question 46

Create a private network across public network infrastructure. Used to connect remote users or separate branches of a business to the main office’s network

Answer 46

Virtual Private Networks (VPNs)

Question 47

Allows multiple instances of a routing table to coexist within the same router at the same time

Answer 47

Virtual Routing & Forwarding (VRF)

Question 48

Ability to create multiple separate security domains within a single physical device (e.g. Firewall). Allows multiple virtual firewall instances within a single device

Answer 48

Virtual Domain

Question 49

Maximum amount of data that can be transmitted over a network or internet connection in a given amount of time

Answer 49

Bandwidth

Question 50

Actual rate of successful data transfer achieved, measured over a period of time

Answer 50

Throughput

Question 51

Measure of the level of the desired signal to the level of background noise. A higher _ can allow for higher data rates

Answer 51

Signal-to-noise ratio

Question 52

Time it takes for signal to travel from its source to its destination and back (round-trip time)

Answer 52

Latency

Question 53

Variation in time delay in milliseconds between data packets over a network. Inconsistency of latency over time.

Answer 53

Jitter

Question 54

Forward packets based on direction of the control plane (packet forwarding & switching). It has two types: Cut-through and Store-and-forward.

Answer 54

Data Plane. Cut-through: Switch starts forwarding the packet as soon as it reads the destination address, without waiting for the entire packet to be received. Reduces latency but does not allow for error checking of the entire packet. Store-and-forward: Switch receives the entire packet, checks it for errors, and then forwards it to the destination. Introduces more latency but ensures that the packet is error-free before forwarding.

Question 55

Functions and processes which determine paths (route calculation / determination, OSPF, BGP)

Answer 55

Control Plane

Question 56

Manages and monitors the network’s operations

Answer 56

Management Plane