Old - Domain 2: Telecommunications and Network Security Flashcards

Question 1

Q

OSI model

Answer

A

A network model with seven layers: physical, data link, network, transport, session, presentation, and application.

Question 2

Q

TCP/IP model

Answer

A

A simpler network model with four layers: network access, Internet, transport, and application.

Question 3

Q

Packet-switched network

Answer

A

A form of networking where bandwidth is shared and data is carried in units called packets.

Question 4

Q

Switch

Answer

A

A layer 2 device that carries traffic on one Local Area Network, based on Media Access Control (MAC) addresses.

Question 5

Q

Router

Answer

A

A layer 3 device that routes traffic from one LAN to another, based on IP addresses.

Question 6

Q

Packet filter and stateful firewalls

Answer

A

Devices that filter traffic based on OSI Layer 3 (IP addresses) and Layer 4 (ports).

Question 7

Q

Carrier Sense Multiple Access (CSMA)

Answer

A

A method used by Ethernet networks to allow shared usage of a baseband (one-channel) network and avoid collisions (multiple interfering signals).

Question 8

Q

Simplex communication

Answer

A

One way communication, like a car radio tuned to a music station.

Question 9

Q

Half-duplex communication

Answer

A

Communication that sends or receives at one time only (not simultaneously), like a walkie-talkie.

Question 10

Q

Full-duplex communication

Answer

A

Communication that sends and receives simultaneously, like two people having a face-to-face conversation.

Question 11

Q

Baseband networks

Answer

A

Networks that have one channel and can send only one signal at a time. (Like ethernet networks)

Question 12

Q

100baseT UTP cable

Answer

A

100 megabit, baseband, and twisted pair cable for ethernet networks.

Question 13

Q

Broadband networks

Answer

A

Have multiple channels and can send multiple signals at a time, like cable TV.

Question 14

Q

Analog communication

Answer

A

Communication like what our ears hear, a continuous wave of information. (such as the original phone networks or vinyl record)

Question 15

Q

Digital communication

Answer

A

Communication that is transferred in bits: ones and zeroes. (such as CD, or VOIP)

Question 16

Q

Metropolitan Area Network (MAN)

Answer

A

Network that is typically confined to a city, Zip Code, campus, or office park.

Question 17

Q

Local Area Network (LAN)

Answer

A

Network that is typically confined to a building or area within a building.

Question 18

Q

Wide Area Network (WAN)

Answer

A

Network that typically covers cities, states, or countries.

Question 19

Q

Global Area Network (GAN)

Answer

A

Network that is a global collection of WANs. (such as the US Dept of Defense global network)

Question 20

Q

Personal Area Network (PAN)

Answer

A

Network with a range of 100 meters or less.

Question 21

Q

Internet

Answer

A

A global collection of peered networks running TCP/IP, providing best-effort service.

Question 22

Q

Intranet

Answer

A

A privately owned network running TCP/IP, such as a company network.

Question 23

Q

Extranet

Answer

A

A connection between private Intranets, such as connections to business partners.

Question 24

Q

Circuit-switched networks

Answer

A

A dedicated circuit or channel (portion of a circuit) between two nodes. Used to provide dedicated bandwidth to point-to-point connections, such as a T1 connecting two offices.

Question 25

Q

Disadvantage of circuit switched networks?

Answer

A

Once a channel or circuit is connected, it is dedicated to that purpose, even while no data is being transferred.

Question 26

Q

Packet-switched networks

Answer

A

Designed to address issues with circuit-switched networks, as well as handle network failures more robustly. Designed to make unused bandwidth available for other connections.

Question 27

Q

ARPAnet

Answer

A

Predecessor of the Internet. Created out of research done in the 1960s by the US Defense Advanced Research Projects Agency (DARPA).

Question 28

Q

Quality of Service (QoS)

Answer

A

Used in packet-switched networks to give specific traffic precedence over other traffic. (often applied to VoIP traffic)

Question 29

Q

Network model

Answer

A

A description of how a network protocol suite operates, such as the OSI model or TCP/IP model.

Question 30

Q

Network stack

Answer

A

A network protocol suite programmed in software or hardware. (TCP/IP)

Question 31

Q

What network model do most systems now use?

Answer

A

TCP/IP Model

Question 32

Q

X.200: Information Technology - Open Systems Interconnection - Basic Reference Model

Answer

A

Formal name for OSI model.

Question 33

Q

Name the 2 sub-layes that the Data Link Layer is dividing into.

Answer

A

Media Access Control (MAC) and Logical Link Control (LLC)

Question 34

Q

OSI - Data Link Layer - MAC Layer

Answer

A

Transfers data to and from the physical layer. Touches layer 1.

Question 35

Q

OSI - Data Link Layer - LLC layer

Answer

A

Handles LAN communications. Touches layer 3.

Question 36

Q

OSI - Physical Layer (Layer 1)

Answer

A

Describes unites of data such as bits represented by energy and the medium used to carry them.

Question 37

Q

OSI - Data Link Layer (Layer 2)

Answer

A

Handles access to the physical layer as well as local area network communication.

Question 38

Q

Layer 1 devices

Answer

A

Hubs and repeaters.

Question 39

Q

Layer 2 devices

Answer

A

Switches and bridges.

Question 40

Q

OSI - Network Layer (Layer 3)

Answer

A

Describes routing: moving data from a system on one LAN to a system on another.

Question 41

Q

Layer 3 devices

Question 42

Q

Layer 3 protocols

Answer

A

IPv4 and IPv6

Question 43

Q

OSI - Transport Layer (Layer 4)

Answer

A

handles packet sequencing, flow control, and error detection.

Question 44

Q

Layer 4 protocols

Answer

A

TCP & UDP

Question 45

Q

OSI - Session (Layer 5)

Answer

A

Manages sessions, which provide maintenance on connections.

Question 46

Q

Good way to remember Session layer.

Answer

A

Connections between applications.

Question 47

Q

Layer 5 example.

Answer

A

Mounting a network share. Used remote procedure calls (RPCs), which exist at the session layer.

Question 48

Q

OSI - Presentation Layer (Layer 6)

Answer

A

Presents data to the application (and user) in a comprehensible way.

Question 49

Q

Layer 6 concepts include what?

Answer

A

Data conversions, character sets such as ASCII, and image formats such as GIF or TIFF.

Question 50

Q

OSI - Application (Layer 7)

Answer

A

This is where you interface with your computer application.

Question 51

Q

Layer 7 examples.

Answer

A

Web browser, word processor, and instant messenger client.

Question 52

Q

Layer 7 protocols.

Answer

A

Telnet and FTP.

Question 53

Q

Please Do Not Throw Sausage Pizza Away

Answer

A

Mnemonic to help remember layers of OSI model.

Question 54

Q

TCP/IP was created by?

Answer

A

US Defense Advanced Research Projects Agency in the 1970s

Question 55

Q

Internet Protocol Suite

Answer

A

Formal name for TCP/IP model.

Question 56

Q

TCP/IP - Network Access Layer

Answer

A

Combines Layer 1 and Layer 2 of the OSI model.

Question 57

Q

TCP/IP - Internet Layer

Answer

A

Aligns with Layer 3 of the OSI model.

Question 58

Q

TCP/IP - Host-to-Host Transport Layer - Sometimes referred to as Host-to-Host or Transport alone.

Answer

A

Aligns with Layer 4 of the OSI model. Connects the Internet Layer to the Application Layer.

Question 59

Q

TCP/IP - Application Layer

Answer

A

Combines Layers 5 through 7 of the OSI model.

Question 60

Q

TCP/IP Application Layer protocol examples.

Answer

A

SSH, Telnet, and FTP.

Question 61

Q

Encapsulation

Answer

A

Takes information from a higher layer and adds a header to it, treating the higher layer information as data.

Question 62

Q

Protocol Data Unit (PDU) examples

Answer

A

Data, segments, packets, frames, and bits.

Question 63

Q

Demultiplexing

Answer

A

Sometimes called de-encapsulation, is the reverse of encapsulation.

Question 64

Q

MAC addresses

Answer

A

Historically 48 bits long. The first 24 bits form the Organizationally Unique Identifier (OUI), and the last 24 bits form a serial number (formally called an extension identifier)

Answer 64

A

Created by IEEE. The OUI is still 24 bits, but the serial number is 40 bits. IPv6 autoconfiguration is compatible with this as well as conventional MAC addresses.

Answer 65

A

Fundamental protocol of the Internet, designed in the 1970s to support packet-switched networking for DARPA. Used for ARPAnet, which later became the Internet.

Answer 66

A

20 bytes long (with no options), and contains the following key fields:

Version - IP version (4 for IPv4)
IHL - Length of IP header
Type of Service - Sets the precedence of the packet.
Identification, Flags, and Offset - Used for IP fragmentation.
Time to Live - To end routing loops.
Protocol - Embedded protocol (TCP, UDP, etc)
Source and Destination Address
Options and Padding (optional)

Answer 67

A

If a packet exceeds the Maximum Transmission Unit (MTU) of a network, a router along the path may fragment it.

Answer 68

A

Maximum PDU size on a network.

Answer 69

A

1500 bytes

Answer 70

A

The IP Identification field (IPID). They will have the same IPID.

Answer 71

A

Uses fragmentation to discover the largest size packet allowed across a network path.

Answer 72

A

Successor to IPv4, featuring far larger address space (128-bit addresses compared to IPv4’s 32-bit), simpler routing, and simpler address assignment.

Answer 73

A

IPv6 header is larger and simpler than IPv4. Fields include:

Version - IP version (6 for IPv6)
Traffic Class and Flow Label - Used for QoS
Payload Length - Length of IPv6 data (not including header)
Next Header - Next embedded protocol header
Hop Limit - To end routing loops

Answer 74

A

Process by which an IPv6 host statelessly configures an IPv6 address by using the host’s MAC address. This process takes away the need for DHCP with IPv6.

Answer 75

A

Two. The first address is a global (routable) address used for communication beyond the local network. Configured based on IPv6 routing advertisement received from a local router. The second address is a link-local address used for local network communication only. This address is assigned independently, without the need for an IPv6 routing advertisement.

Answer 76

A

Take the MAC. 00:0c:29:ef:11:36
Embed the ff:ee constant in the middle two bytes. 00:0c:29:ff:ee:ef:11:36
Set the universal bit. 02:0c:29:ff:ee:ef:11:36
Prepend the network prefix and convert to “:” format: fc01:0000:0000:0000:020c:29ff:eeef:1136
Convert one string of repeating zeroes to “::”: fc01::020c:29ff:eeef:1136

Answer 77

A

Only one.

Answer 78

A

IPv6 autoconfiguration method that utilizes DHCP.

Answer 79

A

When a system uses both IPv4 and IPv6.

Answer 80

A

When a host accesses IPv6 networks via IPv4.

Answer 81

A

Autoconfiguration - Allows systems to communicate with local network withouth admins knowledge.
While modern network tools can see IPv6, many aren’t configured to do so.
Many network administrators have limited understanding of IPv6.

Answer 82

A

Class A: 0.0.0.0-127.255.255.255
Class B: 128.0.0.0-191.255.255.255
Class C: 192.0.0.0-239.255.255.255
Class D (multicast): 224.0.0.0-239.255.255.255
Class E (reserved): 240.0.0.0-255.255.255.255

Answer 83

A

Classless Inter-Domain Routing

Answer 84

A

RFC 1918 address

Answer 85

A

Static NAT
Pool Nat (Dynamic NAT)
Port Address Translation (PAT, or NAT overloading)

Answer 86

A

Used to translate between Layer 2 MAC addresses and Layer 3 IP addresses.

Answer 87

A

Used by diskless workstations to request an IP address.

Answer 88

A

One-to-one traffic, such as a client surfing the Web.

Answer 89

A

One-to-many traffic, where the “many” is preselected. (uses class D addresses and UDP)

Answer 90

A

One-to-all traffic on a LAN.

Answer 91

A

Limited broadcast and directed broadcast.

Answer 92

A

255.255.255.255, never forwarded across a router.

Answer 93

A

192.0.2.255

Answer 94

A

Reaches all nodes in a broadcast domain. A switch is an example of a broadcast domain.

Answer 95

A

FF:FF:FF:FF:FF:FF

Answer 96

A

Provides the ability to access all unicast traffic on a network segment.

Answer 97

A

Transmission Control Protocol and is a reliable Layer 4 protocol. Uses a 3-way handshake to create reliable connections across a network.

Answer 98

A

20 bytes long (with no options) and contains the following important fields:

Source Port and Destination Port
Sequence Number and Acknowledgement Number
TCP Flags
Window Size (amount of data that may be sent before receiving acknowledgment)

Answer 99

A

Reserved (1023 or lower) and ephemeral (1024 to 65535)

Answer 100

A

Combination of an IP address and a TCP or UDP port on one node.

Answer 101

A

Describes a unique connection between two nodes: source ip & port, destination ip & port.

Answer 102

A

Listening (waiting for connection) or established (active connection)

Answer 103

A

-URG - Packet contains urgent data.
-ACK - Acknowledge received data.
-PSH - Push data to app server.
-RST - Reset (tear down) connection.
-SYN - Synchronize a connection.
-FIN - Finish a connection (gracefully)
Additional flags used to manage congestion:
Added in 2001:
-CWR - Congestion window reduced.
-ECE - Explicit congestion notification echo.
Added in 2003:
-NS - Nonce sum.

Answer 104

A

SYN, SYN/ACK, ACK. Used when establishing a connection.

Answer 105

A

8 bytes long and contains the following fields:

Source Port,
Destination Port
Packet length (header and data)
Simple checksum (optional)

Answer 106

A

The User Datagram Protocol is a simpler and faster cousin to TCP. Has no handshake, session, or reliability. Operates at Layer 4. Commonly used for lossy applications, such as streaming audio and video. Also for query-response applications such as DNS.

Answer 107

A

The Internet Control Message Protocol is a helper protocol that helps Layer 3. Used to troubleshoot and report error conditions. Does not use ports like TCP and UDP, instead uses types and codes.

Answer 108

A

Echo request (used for ping)
Echo reply (used for ping)
Time to live exceeded in transit (used for traceroute)

Answer 109

A

Uses the Time to Live (TTL) field to determine all routers between two nodes. Most clients send UDP packets outbound for this (such as UNIX and Cisco), but Windows uses ICMP.

Answer 110

A

TCP port 23

Answer 111

A

TCP port 21 - Control connection (where commands are sent)

-TCP port 20 - the data connection for Active FTP (where data is transferred)

Answer 112

A

Provides a simpler way to transfer files and is often used for saving router configs or bootstrapping (downloading OS) via network by diskless workstations. Has no authentication or directory structure. No confidentiality or integrity.

Answer 113

A

UDP port 69

Answer 114

A

Designed as a secure replacement for Telnet, FTP, and the UNIX “R” commands (rlogin, rshell, etc.)

Answer 115

A

TCP port 22

Answer 116

A

Original version of SSH, has since been found vulnerable to man-in-the-middle attacks. SSH v2 is the current recommended version.

Answer 117

A

TCP port 25

Answer 118

A

TCP port 110

Answer 119

A

TCP port 143

Answer 120

A

UDP port 53 (small answers)

- TCP port 53 (large answers such as zone transfers)

Answer 121

A

Uses the unreliable UDP protocol for most requests, and native DNS provides no authentication. Security of DNS relies on a 16 bit source port and 16 bit DNS query ID. Attackers who are able to guess both numbers can forge UDP DNS responses.

Answer 122

A

Provides authentication and integrity to DNS responses via the use of public key encryption. Note that this does not provide confidentiality.

Answer 123

A

Protocol that is primarily used to monitor network devices.

Answer 124

A

UDP port 161

Answer 125

A

SNMPv1 and v2c provide no authentication or confidentiality. Vulnerable to attacks of attacker can sniff or has access to network. SNMPv3 was designed to provide confidentiality, integrity, and authentication via encryption. Use of this version is strongly encouraged.

Answer 126

A

TCP port 80

Answer 127

A

TCP port 443

Answer 128

A

Used for bootstrapping via a network by diskless systems. Used to load OS via a network without a disk. Normally used to determine the IP and OS image name, then TFTP is used to download the OS.

Answer 129

A

Designed to replace and improve on BOOTP. Allows more config options than BOOTP, as well as assigning temporary IP leases to systems.

Answer 130

A

UDP port 67 - for servers

UDP port 68 - for clients

Answer 131

A

Interference caused by magnetism created by electricity.

Answer 132

A

Any unwanted signal (such as EMI) on a network cable.

Answer 133

A

Occurs when a signal crosses from one cable to another.

Answer 134

A

The weakening of a signal as it travels further from the source.

Answer 135

A

Network cabling that uses pairs of wires twisted together. Twisting the wires dampens the magnetism making the pair less susceptible to EMI.

Answer 136

A

Category Speed (Mbps) Common use

Cat 1 <1 Analog voice
Cat 2 4 ARCNET
Cat 3 10 10baseT Ethrnt
Cat 4 16 Token Ring
Cat 5 100 100baseT Ethrnt
Cat 5e 1000 1000baseT Ethrnt
Cat 6 1000 1000baseT Ethrnt

Answer 137

A

Core and shield used by this cable is thicker and better insulated than other cable types, such as twisted pair. Makes this cabling more resistant to EMI and allows higher bandwidth and longer connections.

Answer 138

A

Two older types of coaxial cable used for Ethernet bus networking.

Answer 139

A

Speed, distance, and immunity to EMI.

Answer 140

A

Cost and complexity.

Answer 141

A

Carrier uses multiple modes (paths) of light, resulting in light dispersion. This type of fiber is used for shorter distances.

Answer 142

A

Uses a single strand of fiber, and the light uses one mode (path) down the center of the fiber. This type of fiber is used for longer distances and high-speed networking.

Answer 143

A

Allows multiple signals to be carried via the same fiber through the use of multiple light “colors” to transmit different channels of information. Combined speeds of over a terabit/second can be achieved when this is used to carry 10-gigabits per color.

Answer 144

A

Dominant LAN technology that transmits network data via frames. Originally used a physical bus topology but later added support for physical star schema.

Answer 145

A

Designed to address collisions on ethernet networks.

Answer 146

A

Used to immediately detect collisions within a network. Used on systems that can send and receive simultaneously, such as wired Ethernet. It takes the following steps:

Monitor network to see if idle.
If not idle, wait a random amount of time.
If idle, transmit.
While transmitting, monitor the network.
If more electricity is received than sent, another station must also be sending.
Send Jam signal to tell all nodes to stop transmitting.
Wait a random amount of time before retransmitting.

Answer 147

A

Used for systems such as 802.11 wireless that cannot send and receive simultaneously. Relies on receiving an acknowledgement from the receiving station; if no acknowledgement is received there must have been a collision. The node will wait and retransmit.

Answer 148

A

CSMA/CD is better because collision detection detects a collision almost immediately.

Answer 149

A

Both are legacy LAN technologies. Both pass network traffic via tokens. Possession of a token allows a node to read or write traffic on a network. No collisions due to this.

Answer 150

A

Another legacy LAN technology, running a logical network ring via primary and secondary counter-rotating fiber optic ring. Single ring runs at 100 megabits.

Answer 151

A

Connects the network nodes in a string. Each node inspects the data as it passes along the bus. Fragile. Should the network cable break anywhere along string, the entire network would go down.

Answer 152

A

A network with a root node and branch nodes that are at least three levels deep (two levels would make it a star) The root node controls all traffic. Legacy network design, root node was often a mainframe.

Answer 153

A

Physical ring connects network nodes in a ring. If you follow the cable from node to node, you will finish where you began.

Answer 154

A

Has become the dominant physical topology for LANs. First popularized by ARCNET and later adopted by Ethernet. Each node is connected directly to a central device such as hub/switch. Features better fault tolerance than other networks, but require more cable. Cost is typically outweighed by fault tolerance advantages.

Answer 155

A

Interconnects network nodes to each other. Provides superior availability and is often used for HA server clusters.

Answer 156

A

T Carriers (United States) and E Carriers (Europe). T1s, T3s, E1s, E3s

Answer 157

A

Dedicated 1.544-megabit circuit that carries 24 64-bit DS0 (digital signal 0) channels (such as 24 switched phone calls). Often rounded off to 1.5 megabits.

Answer 158

A

DS1 describes the flow of bits (via any medium, such as copper, fiber, or wireless); a T1 is a copper telephone circuit that carries a DS1.

Answer 159

A

28 bundled T1s, forming a 44.736-megabit circuit. Often rounded off to 45 megabits.

Answer 160

A

Dedicated 2.048-megabit circuits that carry 30 channels.

Answer 161

A

34.368-megabit circuit. Formed by bundling 16 E1s.

Answer 162

A

Carries multiple T-carrier circuits via fiber optic cable. Uses a phisical fiber ring for redundancy.

Answer 163

A

Packet-switched Layer 2 WAN protocol that provides no error recovery and focuses on speed. Higher layer protocols carried by this protocol, such as TCP/IP, can be used to provide reliability.

Answer 164

A

Multiplexes multiple logical connections over a single physical connection to create Virtual Circuits; this shared bandwidth model is an alternative to dedicated circuits such as T1s.

Answer 165

A

In Frame relay, this type of circuit sets up each “call”, transfers data, and terminates the connection after an idle timeout.

Answer 166

A

In frame relay, this type of circuit is always connected, analogous to a real dedicated circuit like a T1.

Answer 167

A

Older packet-switched WAN protocol. Provided a cost-effective way to transmit data over long distances in the 1970s through early 1990s, when the most common other option was a direct call via analog modem. Popularity faded with rise of Internet.

Answer 168

A

WAN technology that uses fixed length cells. Allows reliable network throughput compared to Ethernet. While ethernet packet sizes range greatly, all of these cells are the same size (53 bytes).

Answer 169

A

Older protocol that is similar to ATM, also uses 53-byte cells.

Answer 170

A

Provides a way to forward WAN data via labels, via a shared ____ cloud network. Allows these networks to carry many types of network traffic, including ATM, Frame Relay, IP, and others. Can carry voice and data and can simplify WAN routing. Assume 12 offices connect to 1 data center. T1s require 12 circuits, this would require 1.

Answer 171

A

A synchronous Layer 2 WAN protocol that uses polling to transmit data. Polling is similar to token passing, diff is that a primary node polls secondary nodes, which can transmit data when polled. Combined nodes can act as either prim or sec. Supports NRM transmission only.

Answer 172

A

Successor to SDLC. Adds error correction and flow control, as well as 2 additional modes (ARM and ABM).

Answer 173

A

Normal Response Mode (NRM) - Secondary nodes can transmit when given permission by the primary.
Asynchronous Response Mode (ARM) - Secondary nodes may initiate communication with the primary.
Asynchronous Balanced Mode (ABM) - Combined mode where nodes may act as either primary or secondary.

Brainscape's Knowledge GenomeTM

Old - Domain 2: Telecommunications and Network Security Flashcards

Brainscape's Knowledge Genome^TM