Telecommunications and Network Security

Question 1

OSI Model

Answer 1

breaks communication process into layers

provides common framework for hardware and software developers

Question 2

Layer 7, Application Layer

Answer 2

receives raw data from application in use and provides services to it

HTTP
DNS Queries
FTP
SMTP

Question 3

Layer 6, Presentation Layer

Answer 3

manner in which data from application layer is presented to the destination application layer

MIME
XDR

Question 4

Layer 5, Session Layer

Answer 4

adds information to packet that makes communication session possible between service or application on the source device with the same on the destination device

application or service in use is communicated with a port number

Question 5

Layer 4, Transport

Answer 5

establishes session between 2 physical systems

either connection-oriented (TCP) or connectionless (UDP)
UDP header is much smaller, fewer features than TCP.

UDP is low overhead, TCP is high overhead

the PDU here is called a segment

Question 6

Layer 3, Network

Answer 6

information needed route the packet is added here as a source and destination logical address (IP address)

PDU here is called a packet

examp protocols
IP
ICMP
IGMP
ARP

Question 7

Layer 2, Data Link

Answer 7

determines physical address for destination

Media Access Control (MAC)

PDU here is called a frame

Adds a trailer at the end of the frame, containing data to verify none of the data inside has been altered en route

Question 8

Layer 1, Physical

Answer 8

turns information into bits and sends it on medium

radio waves
electrical signals
light patterns

Question 9

IP4 vs IP6 headers

Answer 9

IP4 is smaller but more complicated

Question 10

TCP/IP Model

Answer 10

Has 4 layers

Application (OSI layer 5-7)
Transport (OSI layer 4 - same)
Internet (OSI layer 3)
Link (OSI layer 1-2)

Question 11

Protocols and Ports to know

telnet
SMTP
SNMP
FTP
POP3
DNS
DHCP
LDAP

Answer 11

telnet, TCP, UDP 23
SMTP UDP, 25
SNMP, TCP, UDP 161, 162
FTP TCP, UDP, 20,21
POP3 TCP, UDP, 110
DNS, TCP, UDP 53
DHCP, UDP 67, 68
LDAP TCP, UDP 389

Question 12

Network Transmissions

Asynchronous
Synchronous

Answer 12

Asynchronous - sender and receiver stay in synch with each other by sender inserting stop and start bits around the data

Synchronous - clock is used to synchronize the sender and receiver

Question 13

Broadband
vs
Baseband

Answer 13

broadband - connection divided into frequencies. Each device or stream gets a different channel (frequency)

baseband - time slots assigned to devices or streams

Question 14

Cabling

Coaxial

Answer 14

center core (solid or braided)

insulator, metallic shield, plastic jacket

Question 15

Cabling

Twisted Pair

Answer 15

conductor, insulator, cable jacket

4 pairs of cable, each twisted around the other to prevent crosstalk

Question 16

Cabling

Fiber Optic

Answer 16

core, cladding, outside jacket

Question 17

Collision Domains

Answer 17

any part of network where devices’ packets can collide

a switch provides unique collision domains for each port
every device on a hub is in same collision domain

Question 18

Contention Methods

CSMA/CD
CSMA/CA
Token Passing
Polling

Answer 18

CSMA/CD (wired ethernet)
(carrier sense multiple access collision detection). if a collision, message has everyone stop sending, then restart

CSMA/CA (collision avoidance) for wireless
devices tell each other when they’re getting ready to send

Token Passing (token ring)
devices can't send until they receive an empty token

Polling

Question 19

Network Protocols and Services

ARP

Answer 19

translates MAC to IP address

1. send ARP request
2. receive ARP reply
3. adds to ARP cache

Question 20

Network Protocols and Services

DHCP

Answer 20

1. client sends DHCP Discover packet
2. server sends DHCP Offer packet
3. client sends DHCP Request
4. server sends DHCP Pack

Question 21

Routing Protocols

Answer 21

Standards
RIP
IS-IS
OSPF
BGP
VRRP

Proprietary (Cisco)
IGRP, EIGRP

Question 22

Network devices

Patch Panel
Multiplexer

Answer 22

Patch Panel - termination point for cables

Multiplexer - combines several input signals into one output signal

Question 23

Network Devices

Hub

Answer 23

operates at layer 1

no intelligence

Question 24

Network Devices

Hub

Switch

Answer 24

Hub
operates at layer 1
no intelligence

Switch
intelligence. Has MAC address table

Question 25

Network Devices Router Gateway

Answer 25

Router - layer 3, routing table directs traffic Gateway - any devices that performs a translation or acts as a control point for entry/exit

Question 26

Firewalls ``` Packet filtering Stateful Circuit Level Proxy Application Level Proxy Dynamic Packet Filtering Kernel Proxy ```

Answer 26

Packet filtering Stateful Circuit Level Proxy - proxy server. rules controls traffic Application Level Proxy - operates at higher level of OSI model than circuit proxy. Dynamic Packet Filtering - ability to open certain ports dynamical based on the connection iniated from inside network Kernel Proxy - firewall that operates at kernel level

Question 27

Firewall Architectures Bastion Host Dual Homed Three Legged Screened Subnet

Answer 27

Bastion Host - unprotected, has to be locked down Dual Homed - 2 NICS, one on internet, one to LAN Three Legged - 3 NICs, one on internet, one to DMZ, one to LAN Screened Subnet - 2 firewalls, area between them is the screened subnet

Question 28

Cloud Computing IAAS PAAS SAAS

Answer 28

IAAS - Infrastructure, vendor provides hardware PAAS - vendor provides HW and SW SAAS - vendor provides HW, SW, application

Question 29

Network Types ``` LAN Intranet Extranet MAN WAN ```

Answer 29

LAN Intranet - network within the LAN to host website Extranet - network with resources accessible from outside world (partners, vendors) MAN - network around a city, could be wired, wireless WAN - wide area network

Question 30

WAN Technologies US T Carriers. T1, T3 Europe E Carriers. E1, E3

Answer 30

T1 - 24 channels, 1.544 Mbps T3 - 672 channels, 44.736 Mbps (28 T1's) E1 - 2.048 Mbps E3 - 8.

Question 31

WAN Technologies US T Carriers. T1, T3 Europe E Carriers. E1, E3

Answer 31

T1 - 24 channels, 1.544 Mbps T3 - 672 channels, 44.736 Mbps (28 T1's) E1 - 2.048 Mbps E3 - 34 Mbps

Question 32

CSU / DSU Channel Service Unit / Data Service Unit Data Communications Equipment (DCE) Data Terminal Equipment

Answer 32

CSU/DSU Connects LAN to WAN. Translates information from LAN format to WAN compatible DCE - provides interface to router DTE - router

Question 33

Network Connections VOIP

Answer 33

create separate VLAN for IP phones deploy VOIP aware firewall at perimeter secure network layer with IPSec

Question 34

Remote Access Technologies Dialup ISDN Cable DSL

Answer 34

ISDN - Basic Rate (BRI) 3 channels, total 144 Kbps ISDN - Primary Rate (PRI) 23 channels for 1.544 Mbps DSL Symmetric DLS

Question 35

Wireless Technologies Frequency Hopping Spread Spectrum Direct Sequence Spread Spectrum Orthogonal Frequency Division Multiplexing

Answer 35

FHSS - bluetooth DSSS - 802.11 OFDM - 802.11

Question 36

ICMP Attacks ``` Ping of death Smurf Fraggle ICMP redirect Ping scanning ```

Answer 36

Ping of death - so many pings that target can't do anything else Smurf - amplified ping of death Fraggle - like smurf but UDP ICMP redirect - attacker changes route Ping scanning - network scan