N10-009-Section_6_Bonus Flashcards

Question

Netstat -bn

Answer 1

Netstat with b and n switches

Answer 2

Shows all active ports, even those without connections

Answer 3

Shows the local routing table - nothing to do with netstat - same as route print

Answer 4

Internet Information Service

Answer 5

Open source web server software (vs IIS)

Answer 6

This account allows public access to the FPT server

Answer 7

Used the standard unencrypted ports to start the connection then switched over to the encrypted ports. IMAP 143 -> 993, POP 110 -> 995, SMTP 25 -> 465 (or 587)

Answer 8

TLS (Transport Layer Security) is a cryptographic protocol designed to provide secure communication over a computer network. It ensures:

Answer 9

Still TLS, but at no time was it in an unencrypted state - All 3 protocols worked on 587 (although you may find questions that state it uses 465)

Answer 10

SSH uses an authentication key

Answer 11

Simple Network Time Protocol - Uses UDP to synchronize time - Uses Port 123

Answer 12

A level of time keeping devices that keep near perfect time - Atomic clocks, GPS, Radio Waves

Answer 13

Servers that synchronize within a few milliseconds of the stratum 0 devices, and so on and so forth

Answer 14

You've run out of addresses in the set scope (192.168.1.2-254) - Sometimes this can be because the lease time is set for too long and a bunch of devices still have leases that are no longer connected to the network

Answer 15

Lists what computers your computer can see within the workgroup

Answer 16

Lists who you are in terms of the network - what computer you are on and what the account name is

Answer 17

Lists the shares that the designated computer has available

Answer 18

Can map a drive - net use w: \\server\share

Answer 19

Share a resource - net share nickname=C:\users\zach.lee\myfolder

Answer 20

Lists settings for account - password expiration and length info

Answer 21

Lists the network based services that are running on the system - can also start a stopped service

Answer 22

Turn off a service - net stop "world wide Web Publishing Service"

Answer 23

NetBIOS (Network Basic Input/Output System) is a software interface and networking protocol that allows applications on separate computers to communicate over a local area network (LAN). It was developed in the 1980s and is often used in Windows networks. This service also resolves names across a network, computers can communicate by name

Answer 24

The new NetBIOS - Linked Local Multicast Name Resolution

Answer 25

On a domain, its done through DNS, but off domain, there are options like NetBIOS and LLMNR

Answer 26

Lists what the computer's name is and if it is registered under said name

Answer 27

Windows systems keeps track if its name and propagates it through the network

Answer 28

Lists the cache of names your computer knows about - doesn�t keep the cache for long

Answer 29

Like running nbtstat on another computer - shows its name information

Answer 30

Lists stats on what the computers been doing on the network - what computers it's been talking to

Answer 31

Uppercase R - clears remote cache table

Answer 32

Uppercase RR - Rebroadcasts your registered information out on the network

Answer 33

A service that automatically updates DNS records. If you have a device or server with a DHCP address, its difficult to map this to a domain name cause it might change. DDNS will keep track of these changes so its not an issue. There is a DDNS client on the device or router that will update the DDNS server if its IP address changes.

Answer 34

Lists the DNS cache on a computer

Answer 35

Name saver lookup - Most DNS servers are locked down and wont respond - You can get the answer to "Is this a DNS server?" and "is it running"? - Know what the output of this command looks like

Answer 36

Domain information groper - doesn�t come with windows - Needs software like EzDig - Can test DNS servers and query them for information - Most DNS servers are locked down and won't respond - You can get the answer to "Is this a DNS server?" and "is it running"?

Answer 37

Confidentiality, Integrity, Availability

Answer 38

Non-repudiation in network security is a method to ensure that a user or a system cannot deny the authenticity of their actions or communications. It provides proof of data integrity and authenticity, typically through mechanisms like digital signatures and encryption, making it possible to verify the origin and integrity of data.

Answer 39

A method of encryption in which data can be encrypted and decrypted with the same key - To decrypt you need an algorithm and the key

Answer 40

Uses a public key and a private key - Public key to encrypt, private key to decrypt. (Key pair) - An algorithm is used to create a private and public key pair. The two are tied together mathematically, but cannot be derived from each other. Each side of the encryption has their own pair. Each side gives the other a copy of their public key. When sending info to side B, Side A can use Side B's public key to encrypt the data, then send it to side B, then B can decrypt with its private key

Answer 41

An algorithm that will transform a chunk of data to a fixed size value (no matter the length of the original data) - This can be used to verify that data has not changed or is the same. Take the input data and run it through the Hash, then match the output of the hash

Answer 42

MD5, SHA1 and SHA2 (SHA2 = SHA256, and more)

Answer 43

Something you do (Signature), Something you exhibit (typing speed), Someone you know (Signed Cert from a trusted source), Someone you are (Location)

Answer 44

Mandatory Access Control - Label is put on the resource and that defines what you can do with the resource

Answer 45

Discretionary Access Control - Owner can be added to the resource - other people can be readers and writers

Answer 46

Radius provides AAA

Answer 47

The device - Computer / phone

Answer 48

The Access Point that has been setup for Radius

Answer 49

The server through which authentication is done

Answer 50

Part of the radius server but might not be the radius server itself. Could be a domain controller the radius server checks

Answer 51

The person signing in

Answer 52

A router / switch

Answer 53

The server through which authentication is done

Answer 54

Designed to do Authentication for local area networks. Kerberos is a Microsoft Product and a copy of Windows Server must be bought to use it.

Answer 55

When a computer is setup to be Domain Controller it automatically becomes a Kerberos KDC. KDC consists of 2 services, Authentication service and Ticket Granting Service

Answer 56

Ticket Granting Ticket - Given to a computer after authentication by the Authentication Service (Computer is now authenticated, but not authorized), the computer then timestamps the TGT and gives it back to the Ticket Granting Service, TGS timestamps it again and sends a Token back to the computer. The token can be used to authenticate to other computers on the network

Answer 57

Extensible Authentication Protocol - Allows multiple authentication methods to interplay with each other. Kerberos is mostly used over wired networks, PPP is used over wireless.

Answer 58

EAP Pre-shared key - Common key everyone uses to login

Answer 59

Protected Extensible Authentication Protocol - uses standard username and password

Answer 60

EAP-MD5 (Extensible Authentication Protocol - Message Digest 5) is an authentication method used in network security, particularly in wireless and PPP (Point-to-Point Protocol) environments. It employs the MD5 hashing algorithm to provide authentication for a user or device attempting to connect to a network.

Answer 61

EAP-TLS (Extensible Authentication Protocol - Transport Layer Security) is a highly secure EAP authentication method widely used in wireless networks and VPNs. It leverages TLS (the same protocol used for HTTPS) to provide strong mutual authentication between clients and servers.

Answer 62

EAP-TTLS (Extensible Authentication Protocol - Tunneled Transport Layer Security) is an EAP authentication method that enhances security by encapsulating client authentication within a secure TLS tunnel. It provides flexibility in how user credentials are transmitted while maintaining robust encryption.

Answer 63

Single password and username used to authenticate through multiple devices and resources - Managed by AD (or something else)

Answer 64

Systems on the same domain - the same domain means they have a trust relationship with each other

Answer 65

No third party vouching for the cert - it�s a cert created in house - Can be used if there is another level of trust somewhere, like "you work for me" so you trust the cert I generated is legit

Answer 66

Multiple users who trust each other. Over time, there is a bunch of people who trust other people who trust other people etc� Difficult to maintain

Answer 67

Change the default password on switches

Answer 68

Traditional VLAN

Answer 69

Prioritizing Voice traffic to improve Qos for voice

Answer 70

Virtualization of a Router so VLANs on the same switch can talk to each other without a separate router

Answer 71

You can use a router to connect between 2 VLANs

Answer 72

Protocol that allows trunking to happen across switches from different manufacturers - Needs to be enabled

Answer 73

VLAN Trunking Protocol - Cisco Proprietary - Used to automate the updating of multiple VLAN switches

Answer 74

Cable used to connect a computer to a switch or device. Uses the console port

Answer 75

To enter privileged mode

Answer 76

Regular mode

Answer 77

Privileged mode

Answer 78

Gives information about the switch configuration

Answer 79

Shows the information for Fast Ethernet port 1

Answer 80

Packets that are underneath the required Ethernet standard amount of bytes

Answer 81

Packets that are over the required Ethernet standard amount of bytes

Answer 82

Command that could be on a layer 2 switch or router - displays the routing table

Answer 83

To save your configuration changes - copys the altered configuration to the running configuration

Answer 84

Cisco coined the term - a port with no IP address - to differentiate it from router ports or network card ports - Don�t work on layer 3

Answer 85

Root switch - when switches are plugged in they negotiate based on distance to each switch which switch should be the boss

Answer 86

Solution to prevent malicious switches from being plugged in and designating themselves as the root bridge. Once the Root Bridge is established, the MAC address is cached so that all switches know if there is an imposter trying to act as the Root Bridge

Answer 87

Bridge Protocol Data Units Guard - Ports can be configured to only work for computers and not for other switches. This guards against another switch being plugged in. When switches are plugged in they send out BPDUs and the ports with BPDU Guard enabled, will disable themselves

Answer 88

You can designate ports on a switch to know that they are connected to a DHCP server, that way if another DHCP server is plugged in the switch can detect and ignore/disable

Answer 89

Combining 2 ports on a switch to increase bandwidth. If you have a trunk port that is overwhelmed, you can bond another port to it to help with the load

Answer 90

Create a group first, then add the ports to that group

Answer 91

A group in a cisco switch for port bonding

Answer 92

One port needs to be active on one of the 2 devices (or both ports active). If both are passive it won't work

Answer 93

A DNS server that can load balance to multiple servers hosting the same information - All servers will be in a lookup zone

Answer 94

The DNS server will have reverse lookup zones to see where the client is coming from, then it can delegate that traffic to the closest server

Answer 95

Requires some software that is in the same location as the server - This software/box can manage the load for a group of servers

Answer 96

Servers can have a separate network they can talk to each other on, this way they can verify data and make sure they all are the same

Answer 97

A Robust firewall that sits between our computers and a DMZ - Or another section of your network that needs to be blocked

Answer 98

DNS can be a little difficult on IPv6 cause addresses are aggregated and distributed from on high by DHCPv6, your clients will often get DNS server info from the router

Answer 99

Remote Desktop Client - Unencrypted

Answer 100

Tunnel is when you create a secure connection between two networks or devices, then run an app through the secure connection - SSH creates a secure connection, then VNC runs on the SSH connection so it is secure - Tunning is to provide encryption where there normally isnt

Answer 101

Bidirectional Wavelength Division Multiplexing - Fiber technology - Allows a single fiber connection to carry multiple signals by using a different wavelength and/or color

Answer 102

Dense Wavelength Division Multiplexing - More popular than BWDM, Allows a single fiber connection to carry multiple signals by using a different wavelength and/or color - Supports 150 signals

Answer 103

Coarse Wavelength Division Multiplexing - Simpler than DWDM but cheaper

Answer 104

Private WANs (Wide Area Networks) are networks that connect geographically dispersed locations using private, dedicated connections instead of public infrastructure like the internet. These networks are typically used by organizations to securely connect their various sites (such as branch offices, data centers, and remote locations) over long distances.

Answer 105

Private WAN technology - Multiprotocol Label Switching - Provides more efficient connections - Uses a label system within packets to direct

Answer 106

Private WAN technology - Metropolitan Area Network (MAN) Secure Private Network within a city that doesn�t use the internet, so doesn�t need to be as secure. Cheaper

Answer 107

Download and upload are the same

Answer 108

Higher speed download than upload

Answer 109

Would plug into a telephone and filter out the DSL noise

Answer 110

Very High bit rate DSL - Same tech but uses fiber

Answer 111

Cable modems don't like when the MAC address of what they are plugged into changes. MAC Address Clone is how a router can grab and use the MAC address from a computer to make the cable modem happy

Answer 112

The company Citrix used Independent Computing Architecture for the first remote desktops

Answer 113

Carrier-Sense Multiple Access with Collision Avoidance - Part of 802.11 - Wireless clients don�t send anything unless the coast is clear to avoid collisions

Answer 114

Digital Sequence Spread-Spectrum - Old - One form of the actual transmission of data - the Singal is spread across the sub frequencies of a single channel so that if one copy gets stopped the others get through

Answer 115

Orthogonal frequency-driven multiplexing - Newer - One form of the actual transmission of data - Wider range of spread than DSSS - used on 5Ghz spectrum

Answer 116

You can limit the amount of DHCP leases that can be distributed for security reasons

Answer 117

Allows you to connect wirelessly to the AP instead of plugging straight in

Answer 118

Means clients can connect to the AP, but not to each other, even though they are on the same broadcast domain

Answer 119

When software is used on a network to trick clients into thinking they need to re-connect (re-authenticate) to the wifi so they can connect to the Evil Twin

Answer 120

Reflection (Metal), Refraction (Glass), Absorption (Concrete), and Attenuation (Distance)

Answer 121

Uses Mesh WAPs - Uses 1 main WAP - other nodes communicate among each other and transmit back to the WAP

Answer 122

Forget and re-connect

Answer 123

Causes slowness - not enough WAPs for the clients

Answer 124

1. Computer, 2. Hypervisor, 3. Virtual Machine, 4. VDHX

Answer 125

Hypervisor that runs ontop of the OS (Hyper-V)

Answer 126

Hypervisor that boots up as the computer - VMWare?

Answer 127

Benefit of virtualization - the ability to take a VM and add more system resources

Answer 128

Cloud providers can setup different accounts with different permissions to hold to the principle of least privilege

Answer 129

Virtual Desktop Interface - Not the same as DaaS - more in-house servers that provide a windows (or other) desktop and apps - Like how a student can login with a chromebook

Answer 130

Automation in IT is the process of using scripts or tools to perform repetitive tasks without human intervention. It covers a wide range of tasks, from installing software and deploying applications to testing code and monitoring systems.

Answer 131

Orchestration involves coordinating and managing a series of automated tasks across multiple systems or services to achieve a goal. It�s typically used to manage more complex workflows where multiple automated tasks need to interact in a specific order.

Answer 132

Orchestration goes beyond individual task automation to handle the entire process or workflow, which might involve multiple services, environments, or dependencies.

Answer 133

Centralized configuration of multiple switches on a network

Answer 134

Device that manages the SAN storage - connects with a special connection - Fiber Channel or iSCSI or Fiber Channel over Ethernet (FCoE)

Answer 135

Several Network Cards/Paths to connect the SAN. For redundancy

Answer 136

Host Bus Adapter - connects a computer to a Fiber Channel connection

Answer 137

A group of racks served by a single top of rack switch (or 2 for redundancy)

Answer 138

Infrastructure Plane: SDN - This plane consists of the physical and virtual networking devices (switches, routers, etc.) that make up the network�s hardware layer. It underpins all other planes, as it includes the tangible elements through which data flows.

Answer 139

Application Plane: The application plane in SDN contains network applications and services that can request resources from the control plane. These applications can include things like security, load balancing, or network monitoring tools, providing functionality based on network insights and control policies.

Answer 140

Power Distribution Unit - Takes AC from the grid and usually converts to DC (but not always) distributes the power to the devices in a rack -

Answer 141

Diagram of IP addresses and how stuff connects - not concerned with how stuff is laid out physically

Answer 142

Documentation of the baseline CPU/Power and other usages so it can be compared against times of high usage or issues

Answer 143

Campus Area Network - several buildings connected together

Answer 144

Personal Area Network - bluetooth devices that are connected

Answer 145

Voip on steroids - Phones/systems with cameras/mics and screens for video conferencing/real time - Has devices and servers that support

Answer 146

Video Conferencing is one way, everyone can hear/see the speaker - with Real Time everyone can talk at once (Teams)

Answer 147

Unified Communications Device - Camera Phone

Answer 148

Unified Communications Gateway - Device to connect UC devices to other UC devices across networks

Answer 149

A bunch of UC Gateways that work together to promote QoS for UC traffic

Answer 150

Realtime Transfer Protocol - used in Unified Communications - UDP port 5004, 5005

Answer 151

Session Initiation Protocol - used in Unified Communications - TCP ports 5060, 5061

Answer 152

International Telecommunication Union protocol - controls and switches how audio/video travel over a network TCP port 1720

Answer 153

Media Gateway Control Protocol - UDP/TCP ports 2427, 2727

Answer 154

Industrial Control Systems - Where automation is used to control processes

Answer 155

A PC that controls some part of an industry machine - can be sensors or actuators

Answer 156

The place where a human can interact with the ICS server and monitor or make changes

Answer 157

Distributed Computer/Control Systems - Extension of ICS - Several systems each controlled by an ICS server, then a main DCS server to control them all

Answer 158

Supervisory Control and Data Acquisition - Designed for long distance stuff like Oil piplines or railways - ICS systems need to be more ready to control cause it may take time before a human can get onsite and interact - SCADA has a remote terminal unit (not used in traditional ICS)

Answer 159

Programmable Logic Controller - A computer (no monitor/keyboard) to run a system, usually has a special OS that is for the machine

Answer 160

Human Machine Interface - a computer with an interface specific to the machine being monitored

Answer 161

Dangers that can expose a network to attacks

Answer 162

Dangers that can interfere will daily operations and productions

Answer 163

Acceptable Use Policy - Document that states the limits of use on a device, defines ownership of the device, defines what websites you can access or what software you can use

Answer 164

Remote Access Policy - Defines how you can connect to a network from outsite the network, you have to use a VPN, or an Ipsec VPN

Answer 165

Defines the password requirements

Answer 166

How to lift heavy objects, equipment handling and safety

Answer 167

Nondisclosure Agreement - binds you to silence about certain things

Answer 168

Any ruleset that controls how you handle licensing for certain products, usage, transfer of licenses (to another entity) License renewal

Answer 169

Restrictions on information that is sent outside the US, military info, nuclear info, license keys

Answer 170

Strategic Change: This type of change involves long-term goals and typically affects the organization's overall direction or objectives. Strategic changes might include adopting new technologies to stay competitive, aligning network design with business goals, or implementing wide-scale security policies. They are often high-level, planned changes that require significant resources and planning because they impact the organization�s future path.

Answer 171

Infrastructure Change: This is more focused on modifying the network�s physical or virtual infrastructure to improve performance, scalability, or reliability. Infrastructure changes might include upgrades to network hardware (like routers, switches), introducing more bandwidth, or making adjustments to support new software applications. These changes are generally operational and are often performed as part of routine network maintenance.

Answer 172

1. Type of Change, 2. Configuration Process, 3. Rollback Process, 4. Potential Impact, 5. Notification (of the org, to the change)

Answer 173

Documentation

Answer 174

External Threats, Internal Threats

Answer 175

Malware, hackers, social engineers

Answer 176

Employees - bad actors or accidents

Answer 177

Old computer, unpatched software

Answer 178

Posture Assessment refers to the evaluation of an organization�s overall security status. This process involves examining the network, devices, software, policies, and user behavior to determine how well they align with security best practices and regulatory requirements. A posture assessment aims to identify vulnerabilities, assess potential threats, and determine the level of risk the organization faces.

Answer 179

Vendor Assessment, Process Assessment

Answer 180

Single IP address that several servers in a cluster use. So from the outside it only looks like one server, but the inside has redundancy and load balancing

Answer 181

The ability of a system to withstand disruptive events or component failure

Answer 182

Artosis Pylon

Answer 183

Memorandum of Understanding - Defines an agreement between two parties, used where a legally binding contract is inappropriate - All hospitals in a city make an MOU to take each others patients in case of a disaster

Answer 184

Multi-Source Agreement - Serves in lou of a standard - Two companies can agree to make parts for their proprietary equipment that work with each other. Might eventually become a standard

Answer 185

Statement of Work - Legal contract between two parties (vendor and customer) - Defines services to be performed, time frame/deliverables, defines milestones/progress

Answer 186

1. Secure the area, 2. Document the Scene, 3. Collect Evidence, 4. Interface with Authorities

Answer 187

Paper trail of who has what access to what evidence as it progresses through authorities

Answer 188

Process of an organization preserving and organizing data in anticipation of a pending legal case

Answer 189

The process of requesting the data and providing it in a legal way

Answer 190

Allows user to bring their own device for work purposes. The policy can define how the device is used and what may be wiped in the offboarding process.

Answer 191

Corporate-owned, Business only - Business owns all devices

Answer 192

Corporate-owned, personally Enabled - Business owned, but the user will receive some guidelines on how they can use the device for personal stuff

Answer 193

Choose your own device - Users can

Answer 194

A layered system of security measures. 1. Perimeter, 2. Network, 3. Host/Endpoint, 4. Application, 5. Data

Answer 195

Doors/locks

Answer 196

Security can be implemented using network segmentation enforcement (VLANs) and network access control

Answer 197

Endpoint security, updates

Answer 198

Apps can be tested on a VM to make sure they don�t create vulnerabilities on the network

Answer 199

Separation of duties - no user has access to every part of a system or process, encryption probably

Answer 200

A type of DoS attack, just a ton of nonsense to deny service, ping flood, UDP flood

Answer 201

A type of DoS attack, does something unusual with the underlying protocol (DNS, HTTPS) that causes the server to do weird things and keep it from answering quickly. Syn Flood, or SYN/TCP attack. Client will continuously send SYNs to the server and never wait for a SYN ACK response.

Answer 202

A type of DoS attack, attacks the application directly that keeps the app on the server from resolving quickly. Slow Loris Attack - client will initiate the session with the server, and never respond making the server wait for responses that never come

Answer 203

Smurf attack - Attacker spoofs the websites IP address so everyone on the network starts talking back to the target

Answer 204

Command and Control - when malware is propagated from a single computer throughout a network to create a botnet

Answer 205

URL highjacking - www.googel.com

Answer 206

When an org doesn�t update their domain and someone else grabbed it first

Answer 207

A Replay Attack is a type of network attack where an attacker intercepts valid data transmissions and re-sends them to deceive the recipient into thinking it�s legitimate communication. In essence, the attacker "replays" or duplicates a previously captured message to gain unauthorized access or perform an action on behalf of the sender.

Answer 208

Makes a server provide a downgraded level of security (for a webpage) so it can be exploited

Answer 209

Two people are already talking, and someone gets in the middle of the session and injects information

Answer 210

Department of Defense standard for wiping data - drive has to face at least 3 passes of reformatting

Answer 211

Not exactly malicious, but annoying

Answer 212

Keyloggers, hides and tracks data

Answer 213

A Remote Access Trojan (RAT) is a type of malware that provides an attacker with unauthorized remote access to a victim's computer. Once a RAT is installed on a target system, it allows the attacker to monitor user behavior, access sensitive information, activate the webcam or microphone, capture keystrokes, and control files and applications remotely.

Answer 214

Locks a computer/files until you pay

Answer 215

Opening in a software for maintenance

Answer 216

Dumpster Diving, Phishing/Whaling, Shoulder Surfing, Eavesdropping, Tailgating/piggypacking, Access Control Vestibule (Mantrap), Masquerading (impersonating)

Answer 217

Common Vulnerabilities and Exposure - A list of common vulnerabilities. Each vulnerability has an ID number

Answer 218

CVE Numbering Authority

Answer 219

The unknown flaw that a hacker finds

Answer 220

The method the hacker uses to attack the vulnerability

Answer 221

An attack with no known vulnerability, the attack itself (in the 3 steps)

Answer 222

Outside Lighting, Signage (warning sign), Security Guards

Answer 223

Fence, Mantrap, Air gaps (separates important cables from everything else), Safe/Cabinets, Locks, Cable Locks, Screen Filters

Answer 224

Strong Fences that can stop vehicles (15,000lb). K4=30mph, K8=40, K12=50

Answer 225

Alarms, Cameras, Motion Detectors, Log FIles

Answer 226

Security Guard Guarding a broken fence

Answer 227

Dynamic ARP Inspection - Cisco - Compiles a list of known-good MACs and Ips

Answer 228

Term for port security

Answer 229

Or unneeded network services such as ICMP

Answer 230

RA is unsecure, RA guard protects from rogue RA messages

Answer 231

Control Plane Policing (CoPP) is a feature used in networking devices (such as routers and switches) to protect the control plane by regulating and controlling traffic destined for it. The control plane is responsible for processing network control traffic (like routing updates, management protocols, and ICMP messages). If left unprotected, it can be overwhelmed by malicious or excessive traffic, leading to degraded performance or even denial of service.

Answer 232

The router on the internet side of a DMZ

Answer 233

The firewall at the edge of a network

Answer 234

Unified Threat Management - Firewall/VPN Endpoint/Proxy/Anti-Malware - Threat Management at every level

Answer 235

Original Firewall - Filters based primarily on IPs and MAC - Weakness is that you have to identify and tell the firewall literally what to block - it�s a dumb firewall

Answer 236

Smart Firewall - Creates a State Table - Keeps track of what is going out so that it expects what will be coming back in

Answer 237

Deep Packet Inspection - Firewalls can look and block based on application and context - Application or Context Aware (runs at Layer 7 of OSI)

Answer 238

Link State, Temperature, Electrical Load, Duplex and Speed, Send and receive traffic, CRC errors, Giants and Runts, Encapsulation Errors

Answer 239

Frames or Packets that are malformed or fractured

Answer 240

Measure the amount of packets a device can't handle

Answer 241

File Integrity Monitoring (FIM) is a security control that tracks and detects changes to files and directories in a system. It helps ensure the integrity of critical system and configuration files by monitoring for unauthorized or suspicious modifications, additions, or deletions.

Answer 242

The act of a database creating different tables to subset data in smaller chunks (Clinic_Location_Information, Clinic_ISP_Info, instead of all in the same row)

Answer 243

Write Once, Read Many

Answer 244

Software - system Monitoring software/graphs

Answer 245

Software - system Monitoring software/graphs

Answer 246

Elasticsearch, Logstash, Kibana - Software - system Monitoring software/graphs

Answer 247

Transmitter (TX)/Receiver (RX) Transposed refers to a common connectivity issue where the transmit (TX) and receive (RX) connections are swapped between two devices during cable setup. This miswiring prevents proper communication because the transmitting signal from one device fails to align with the receiving signal of the other device.

Answer 248

Mismatch (Transceivers) refers to an incompatibility or misalignment between the specifications or operational parameters of transceivers, which can lead to communication errors, degraded performance, or failure to establish a connection.

Answer 249

Signal Strength (Transceivers) refers to the power level of a transmitted or received signal in a transceiver system. A transceiver, which combines both a transmitter and receiver, relies on signal strength to determine the quality and reliability of communication.

Answer 250

Industrial Internet of Things - IoT but for industry

Answer 251

Jump Box/Jump Host in the context of CompTIA Network+ refers to a secure, controlled system that acts as an intermediary or "gateway" for accessing and managing devices or systems within a network, typically in a secured or isolated environment (e.g., DMZ or internal network).

Answer 252

In-Band vs Out-of-Band Management refers to two methods of accessing and managing network devices like routers, switches, and servers for configuration, troubleshooting, and maintenance.

Answer 253

In networking, prefix length refers to the number of bits used to represent the network portion of an IP address. It is commonly expressed in CIDR (Classless Inter-Domain Routing) notation, where the prefix length is written after the IP address, separated by a slash (e.g., 192.168.1.0/24). The prefix length determines how many bits of the IP address are used to identify the network, and the remaining bits identify hosts within that network.

Answer 254

VIP (Virtual IP Address) is an IP address that is not tied to a specific physical network interface or device but instead represents an abstracted address used in various networking scenarios. A VIP allows for better management, load balancing, and redundancy across a network.

Answer 255

A VLAN Database is a configuration on network devices (such as switches or routers) that contains the list of VLANs (Virtual Local Area Networks) configured within the network. This database is used to manage VLAN IDs, their associated names, and sometimes the VLAN-specific settings like ports, IP addresses, and routing configurations. It helps network devices understand the structure of VLANs in the network and how to handle traffic accordingly.

Answer 256

In wireless networking, OWE stands for Opportunistic Wireless Encryption. It is a security feature introduced as part of the Wi-Fi Alliance's WPA3 standard to enhance the security of open Wi-Fi networks (those without a password). This connection blocks connection to other devices on the network.

Answer 257

Control and provisioning of WAPs - Manages multiple WAPs from one place

Answer 258

In the context of networking, rack or server management, the terms port-side exhaust and port-side intake typically refer to the airflow direction and positioning of cooling systems in data centers or server racks. These terms are especially relevant for managing server cooling and optimizing airflow to prevent overheating and ensure the efficient operation of networking equipment and servers.

Answer 259

Direct Connect (often referred to as AWS Direct Connect, but also applicable in other cloud environments) is a cloud service offering that provides a dedicated, private network connection between a user�s on-premises infrastructure and a cloud service provider (such as Amazon Web Services - AWS, Microsoft Azure, or Google Cloud). The primary goal of Direct Connect is to provide a more reliable, consistent, and secure network connection compared to using the public internet.

Answer 260

Network Security Groups (NSGs) are a key component of cloud security, particularly in services like Microsoft Azure and other cloud platforms. NSGs act as virtual firewalls that control inbound and outbound traffic to and from network interfaces (NICs), virtual machines (VMs), subnets, or other cloud resources within a Virtual Network (VNet).

Answer 261

Network Security Lists (NSLs) are a security feature in cloud environments, specifically in services like Oracle Cloud Infrastructure (OCI), that allow you to define security rules to control traffic flow to and from resources within a Virtual Cloud Network (VCN).

Answer 262

Port 69 - TFTP (Trivial File Transfer Protocol) is a simple, connectionless file transfer protocol that is primarily used for transferring small files over a local network. TFTP is based on UDP (User Datagram Protocol), which makes it faster than protocols like FTP or SFTP but also less reliable because it does not have built-in error recovery mechanisms or connection management.

Answer 263

Port 514 - Syslog (System Logging Protocol) is a standardized protocol used to collect and store log messages from network devices, servers, and other systems in a network. It allows for centralized logging and monitoring of system events, making it easier for administrators to track and troubleshoot issues.

Answer 264

Port 636 - LDAP over SSL (often referred to as LDAPS) is a secure version of the Lightweight Directory Access Protocol (LDAP), which is used for accessing and maintaining distributed directory information services over a network. LDAPS encrypts the LDAP communication by using SSL/TLS (Secure Sockets Layer/Transport Layer Security) to secure the connection between the client and the LDAP server.

N10-009-Section_6_Bonus Flashcards

(291 cards)