Infrastructure Security Devices Flashcards Preview

CompTIA Security+ SY0-501 > Infrastructure Security Devices > Flashcards

Flashcards in Infrastructure Security Devices Deck (17)
Loading flashcards...
1

What is port security on a switch?

Allows defined number of MAC addresses into port

2

What is 802.1x?

Requires authentication at the switch (Layer 2)

3

What is a stateful firewall?

Remembers outbound traffic to dynamically let corresponding inbound traffic in using (L3 - L4)

4

What is a load balancer?

Distributes load across multiple servers

5

What are some of the types of load balancer balancing?

Round robin
Least connection

6

What is CIA?

Confidentiality
Integrity
Availability

7

What is a proxy server?

Traffic goes through proxy to inspect entire protocol stack, creates/relays new session
Rule implementation (i.e content filtering, monitoring)

8

What is a VPN contentrator?

Endpoint for all VPN connections

9

What is a NIDS?

Network Intrusion Detection System
Receives copy of traffic
Cannot inspect encrypted traffic

10

What is a NIPS?

Network Intrusion Prevention System
Directly intercepts traffic
Cannot inspect encrypted traffic

11

What is HIDS and HIPS?

Host based IDS and IPS
Protects only that system
Advantageous for encrypted network traffic

12

What is signature based IDS/IPS?

Database of malicious things to look for
Compares traffic to database

13

What is a behaviour/anaomaly/heuristic based IDS/IPS?

Creates baseline of network activity

14

What is a protocol analyser?

Packet sniffer, can identify fragmentation, flooding, protocols

15

What is promiscuous mode?

Functionality on computer to allow an network interfaces traffic to be inspected, accepts frames not identical to NICs MAC address

16

What is a UTM?

Unified Threat Management

17

What is a web application firewall?

Can forward/drop traffic via inspecting application layer (L3 - L7)