Maintaining a Secure Network Flashcards Preview

KM1 Networking & Architecture > Maintaining a Secure Network > Flashcards

Flashcards in Maintaining a Secure Network Deck (21)
Loading flashcards...
1
Q

IP Addresses

What are the typical private addresses.

A
  1. x.x.x
  2. x.x.x
  3. x.x.x
2
Q

IP Addresses

What is a Netmask used for?

A

Used ti determine which part of the address is used for the network and which is used for the host/client machine.

3
Q

IP Addresses

What is the Default Gateway?

A

The default route used to connect to other systems.

This will normally be the router, but can be tied to other systems.

4
Q

IP Addresses

What is a Static Address?

A

An IP Address that does not change. These are usually used on items such as servers and switches, as it helps ensure that you can connect to them.

5
Q

IP Addresses

What are Dynamic Addresses?

A

Dynamic Addresses are IP Addresses given to a device on a lease basis. This means that they can change. Useful when you are a big company dealing with lots of devices.
You can also set dynamic addresses to only show up in a select DHCP Scope, which is very useful when utilising VLANs.

6
Q

DNS

Recall:

DNS Record Types.

A

A - Maps a hostname to an IPv4 address.
AAAA - Maps a hostname to an IPv6 address.
CNAME - Meaning “Canonical Name” this is an alias of an already existing record, allowing multiple hostnames to map to the same IP Address.
MX - A mail exchange record map. Maps a domain name to a specific email server for that domain.
PTR - A pointer record - points to a canonical name. Commonly used in reverse DNS lookups.
SOA - Meaning “Start Of Authority” - this record provides informayion about a DNS Zone, such as contact info for the administrator, the zone’s primary name server and refresh timers.

7
Q

DNS

What is a DNS Server (Domain Name Server)?

A

A server that holds a directory of domain names and maps them to specific IP Addresses.
These are necessary because otherwise people would have to remember an IP Address in order to connect to any website or server.

8
Q

DNS

What is DNS Propagation?

A

The 36 hour time period allotted for worldwide DNS Servers to create a record for newly created Domains.

9
Q

DNS

Why do you need a DNS Server on your domain?

A

In order to allow for external connections and to have a DNS list for you to connect to external servers without having to know their IP Addresses.

10
Q

DNS

Explain why you’d have a Primary and Secondary DNS.

A

A Primary DNS would be the preferred DNS server to use, however the Secondary DNS should be maintained as a failover allowijg for DNS Lookups to occur in the event of the Primary DNS Failing.

11
Q

Common Ports

Match some common ports to their names.

A
FTP Data - Port 20
FTP Commands - Port 21
SSH - Port 22
TELNET - Port 23
DNS - Port 53
DHCP (Incoming) - Port 67
DHCP (Outgoing) - Port 68
HTTP - Port 80
HTTPS - Port 443
IMAP - Port 143
IMAPS - Port 993
POP3 - Port 110
POP3S - Port 995
SMTP - Port 25
SMTPS - Port 465
RDP - Port 3389
12
Q

Common Ports

Active Directory Ports

What are the AD Ports?

A

LDAP - Port 389

LDAPS - Port 636

13
Q

Common Ports

What does LDAP stand for?

A

Lightweight Directory Access Protocol

For LDAPS just add secure

14
Q

Remote Support

Describe and explain the remote connection services available.

A

RDP - Remote Desktop Protocol, a Microsoft proprietary protocol used to allow users to connect to another PC remotely. You essentially take over the device.

VNC - Virtual Network Computing - an open source graphical desktop sharing system (basically platform independent RDP but better and open source)

SSH - Secure Socket Shell, a network protocl used primarily on Linux/Unix for remote connection, but also found on numerous switches, firewalls and other infrastructure pieces.

Telnet - used to connect to devices such as switches etc. Not a secure method of connection

15
Q

Virtual LANS

Basics: What is a LAN?

A

A Local Area Network

16
Q

Virtual LANS

What is a key issue with LANs?

A

If two people send data at the same time on the same LAN, packet collisions can occur, causing the data to be lost.

17
Q

Virtual LANs

What is a VLAN?

A

A subset of VPN, a VLAN is a Virtual LAN. VLANs allow for network traffic to be grouped, helping reduce packet collisions and increase security.

18
Q

VLAN vs VPN

Explain the difference between a VLAN and VPN.

A

A VLAN allows logical infrastructure connections to be seperated from each other within one network.

A VPN allows for secure connection from one network to another.

19
Q

Domain Controller

What is a Domain Controller’s purpose?

A

To centralise the management of directory services such as AD.

20
Q

Domain Controller

What does a Domain Controller do?

A

Responds to a security authentication requests inside of a Windows Server domain.

21
Q

Domain Controller

How do you install a Domain Controller? (5 steps)

A

1: Install Windows Server + the relevant services
2: Configure the networking
3: Install Active Directory
4: Configure a Domain Name
5: Setup your users and groups