Module 04

Question 1

A three-step process in which transport layer protocols establish a connection between nodes.

Answer 1

Three-way-handshake

Question 2

A method of error checking that determines if the contents of an arriving data unit match the contents of the data unit sent by the source.

Answer 2

Checksum

Question 3

A software package or hardware-based tool that can capture and analyze data on a network.

Answer 3

Protocol analyzer

Question 4

The trip a unit of data takes from one connectivity device to another. Typically, hop is used in the context of router-to-router communications

Answer 4

Hops

Question 5

A core protocol in the TCP/IP suite that functions in the data link layer of the OSI model. ARP works in conjunction with IPv4 to discover the MAC address of a node on the local network and to maintain a database that maps local IP addresses to MAC addresses.

Answer 5

ARP (Address Resolution Protocol)

Question 6

A database of records that maps MAC addresses to IP addresses. The ARP table is stored on a computer’s hard disk where it is used by the ARP utility to supply the MAC addresses of network nodes, given their IP addresses.

Answer 6

ARP table

Question 7

A record in an ARP table that is created when a client makes an ARP request that cannot be satisfied by data already in the ARP table.

Answer 7

Dynamic ARP table entries

Question 8

A record in an ARP table that someone has manually entered using the ARP utility.

Answer 8

Static ARP table entries

Question 9

A data link layer protocol that works with ICMPv6 to detect neighboring devices on an IPv6 network, helps manage the SLAAC (stateless address autoconfiguration) process, and oversees router and network prefix discovery.

Answer 9

NDP (Neighbor Discovery Protocol)

Question 10

The name for a MAC address on an IPv6 network.

Answer 10

Link-layer address

Question 11

The most common Ethernet standard today. Ethernet II is distinguished from other Ethernet frame types in that it contains a 2-byte type field to identify the upper-layer protocol contained in the frame.

Answer 11

Ethernet II

Question 12

A sublayer of layer 2 that is primarily concerned with multiplexing, flow and error control, and reliability.

Answer 12

LLC (logical link control) sublayer

Question 13

The lower portion of the data link layer that is specifically involved with managing MAC addresses in message frames.

Answer 13

MAC sublayer

Question 14

The largest IP packet size in bytes that routers in a message’s path will allow without fragmentation and excluding the frame.

Answer 14

MTU (maximum transmission unit)

Question 15

A setting on Ethernet network devices that allows the creation and transmission of extra-large frames, which can be as large as just over 9,000 bytes.

Answer 15

Jumbo frame

Question 16

A network access method specified for use by IEEE 802.3 (Ethernet) networks. In CSMA/CD, each node waits its turn before transmitting data to avoid interfering with other nodes’ transmissions.

Answer 16

CSMA/CD (Carrier Sense Multiple Access with Collision Detection)

Question 17

In Ethernet networks, the interference of one node’s data transmission with the data transmission of another node sharing the same segment.

Answer 17

Collision

Question 18

The portion of an Ethernet network in which collisions could occur if two nodes transmit data at the same time. Today, switches and routers separate collision domains.

Answer 18

Collision domain

Question 19

The use of an algorithm to scramble data into a format that can be read only by reversing the algorithm—that is, by decrypting the data—to keep the information private.

Answer 19

Encryption

Question 20

A three-tenet, standard security model describing the primary ways that encryption protects data. Confidentiality ensures that data can only be viewed by its intended recipient or at its intended destination. Integrity ensures that data was not modified after the sender transmitted it and before the receiver picked it up. Availability ensures that data is available to and accessible by the intended recipient when needed.

Answer 20

CIA (confidentiality, integrity, and availability) triad

Question 21

A series of characters that is combined with a block of data during that data’s encryption.

Answer 21

Key

Question 22

A type of key encryption in which the sender and receiver use a key to which only they have access. Also known as symmetric encryption.

Answer 22

Private key encryption

Question 23

A method of encryption that requires the same key to encode the data as is used to decode the cipher text.

Answer 23

Symmetric encryption

Question 24

A form of key encryption in which data is encrypted using two keys: One is a key known only to a user (that is, a private key), and the other is a key associated with the user and that can be obtained from a public source, such as a public key server. Public key encryption is also known as asymmetric encryption.

Answer 24

Public key encryption

Question 25

A type of encryption (such as public key encryption) that uses a different key for encoding data than is used for decoding the cipher text.

Answer 25

Asymmetric encryption

Question 26

A small file containing verified identification information about the user and the user’s public key.

Answer 26

Digital certificate

Question 27

An organization that issues and maintains digital certificates as part of the PKI (public-key infrastructure).

Answer 27

CA (certificate authority)

Question 28

The use of certificate authorities to associate public keys with certain users.

Answer 28

PKI (public-key infrastructure)

Question 29

The process of comparing and matching a client’s credentials with the credentials in a client database to enable the client to log on to the network.

Answer 29

Authentication

Question 30

A layer 3 protocol that defines encryption, authentication, and key management for TCP/IP transmissions. IPsec is an enhancement to IPv4 and is native to IPv6.

Answer 30

IPsec (Internet Protocol Security)

Question 31

In the context of IPsec, a type of encryption that provides authentication of the IP packet’s data payload through public key techniques.

Answer 31

AH (authentication header)

Question 32

In the context of IPsec, a type of encryption that provides authentication of the IP packet’s data payload through public key techniques and encrypts the entire IP packet for added security.

Answer 32

ESP (Encapsulating Security Payload)

Question 33

A method for connecting and logging on to a server, LAN, or WAN from a workstation that is in a different geographical location.

Answer 33

Remote access

Question 34

A server that runs communications services enabling remote users to log on to a network and grant privileges to the network’s resources.

Answer 34

RAS (remote access server)

Question 35

A virtual connection between a client and a remote network, two remote networks, or two remote hosts over the Internet or other types of networks, to remotely provide network resources.

Answer 35

VPN (virtual private network)

Question 36

A version of FTP that incorporates the SSL/TLS protocols for added security.

Answer 36

FTPS (FTP Secure or FTP over SSL)

Question 37

A file server used to remotely boot devices that don’t have their own hard drives, to collect log files from devices, or to back up and update network device configuration files.

Answer 37

TFTP server

Question 38

Software that allows a user on one computer, called the client, to control another computer, called the host or server, across a network connection.

Answer 38

Terminal emulator

Question 39

The act of impersonating fields of data in a transmission, such as when a source IP address is impersonated in a DRDoS attack.

Answer 39

Spoofing

Question 40

Graphical-based access to a remote computer’s desktop.

Answer 40

Remote desktop connection

Question 41

A service on a Windows server that can manage high volumes of RDP (Remote Desktop Protocol) connections to a network’s computers through a single public IP address.

Answer 41

Remote desktop gateway

Question 42

A remote desktop implementation that offers VM instances for remote access clients.

Answer 42

VDI (Virtual Desktop Infrastructure)

Question 43

A service offered by Windows Server that uses RDP (Remote Desktop Protocol) to allow multiple users to access the same virtual or physical Windows Server system at the same time.

Answer 43

RDS (Remote Desktop Services)

Question 44

Software that uses the cross-platform protocol RFB (remote frame buffer) to remotely control a workstation or server.

Answer 44

VNC (Virtual Network Computing)

Question 45

A switch management option, such as Telnet, that uses the existing network and its protocols to interface with a switch.

Answer 45

In-band management

Question 46

A dedicated connection (either wired or wireless) from the network administrator’s computer used to manage each critical network device, such as routers, firewalls, servers, power supplies, applications, and security cameras.

Answer 46

Out-of-band managment

Question 47

A type of VPN in which VPN gateways at multiple sites encrypt and encapsulate data to exchange over tunnels with other VPN gateways. Meanwhile, clients, servers, and other hosts on a site-to-site VPN communicate with the VPN gateway.

Answer 47

Site-to-site VPN

Question 48

A type of VPN in which clients, servers, and other hosts establish tunnels with a private network using a VPN gateway at the edge of the private network.

Answer 48

Client-to-site VPN

Question 49

A VPN gateway that manages multiple tunnels from individual VPN clients.

Answer 49

VPN headband

Question 50

A VPN accessed by the client system through a limited, web-based connection using a browser and secured by SSL/TLS.

Answer 50

Clientless VPN

Question 51

A type of VPN that captures all network traffic, whether destined for the Internet or for the corporate network.

Answer 51

Full tunnel VPN

Question 52

A type of VPN that captures only the traffic destined for the corporate network. The client can communicate with local network resources directly and with Internet resources through a local Internet connection.

Answer 52

Split tunnel VPN

Question 53

A tunneling protocol developed by Cisco that is used to transmit IP and other kinds of messages through a tunnel.

Answer 53

GRE (Generic Routing Encapsulation)

Question 54

A tunneling protocol developed by Cisco that allows the configuration of multiple tunnel destinations on a single interface.

Answer 54

mGRE (multipoint GRE)

Question 55

A particular type of enterprise VPN using Cisco devices that dynamically creates VPN tunnels between branch locations as needed rather than requiring constant, static tunnels for site-to-site connections.

Answer 55

DMVPN (Dynamic Multipoint VPN)

Question 56

A TCP/IP troubleshooting utility that displays statistics and details about TCP/IP components and connections on a host. It also lists ports, which can signal whether services are using the correct ports.

Answer 56

Netstat

Question 57

A Windows utility that uses ICMP (Internet Control Message Protocol) echo requests to trace the path from one networked node to another, identifying all intermediate hops between the two nodes.

Answer 57

Tracert

Question 58

A TCP/IP troubleshooting utility available in Linux, UNIX, and macOS systems that sends UDP messages to a random port on the destination node to trace the path from one networked node to another, identifying all intermediate hops between the two nodes.

Answer 58

Traceroute

Question 59

(1) A repeated trial message transmitted by the tracert and traceroute utilities to trigger routers along a route to return specific information about the route. (2) A small electronic device that emits a tone when it detects electrical activity on a wire pair. When used in conjunction with a tone generator, it can help locate the termination of a wire pair. Also called a tone locator. (3) In 802.11 wireless networking, a type of frame issued by a station during active scanning to find nearby access points.

Answer 59

Probes

Question 60

A free, command-line packet sniffer utility that runs on Linux and other UNIX operating systems.

Answer 60

tcdump

Question 61

A software package or hardwarebased tool that can capture data on a network.

Answer 61

Packet sniffer