Security ( Filtering, DOS, Firewalls)

Reviewed by Editorial Team
The ProProfs editorial team is comprised of experienced subject matter experts. They've collectively created over 10,000 quizzes and lessons, serving over 100 million users. Our team includes in-house content moderators and subject matter experts, as well as a global network of rigorously trained contributors. All adhere to our comprehensive editorial guidelines, ensuring the delivery of high-quality content.
Learn about Our Editorial Process
| By Apalani
A
Apalani
Community Contributor
Quizzes Created: 17 | Total Attempts: 78,819
| Attempts: 228
Quiz Flashcard
SettingsSettings
Please wait...
  • 1/10 Questions

    What is ESP when configuring IPSec?

    • Is the only type of IPSec header
    • Provides integrity and authentication
    • Encapsulating Security Payload - provides Confidentially, Integrity and Authentication
    • Sits behind the UDP header
Please wait...
About This Quiz

This quiz on 'Security (Filtering, DoS, Firewalls)' assesses knowledge in network security, focusing on IPSec, NAT, DoS attacks, IDP devices, protocol anomalies, and firewall rules. It is crucial for understanding security mechanisms and threat mitigation in digital networks.

Security ( Filtering, DOS, Firewalls) - Quiz

Quiz Preview

  • 2. 

    Destination NAT typically occurs…

    • For access to internal devices on a network that sit behind a router / firewall

    • For all workstations to use when going out to the internet

    • When you need to translate internal and external ports

    • For internal workstations that need to access the internet sharing the same IP address

    Correct Answer
    A. For access to internal devices on a network that sit behind a router / firewall
    Explanation
    Destination NAT typically occurs for access to internal devices on a network that sit behind a router/firewall. This means that when external devices or users want to access a specific internal device, the destination NAT translates the destination IP address of the incoming packets to the internal IP address of the device. This allows external access to internal resources without exposing the internal IP addresses to the outside world.

    Rate this question:

  • 3. 

    SYN flood relates to?

    • Many workstations trying to access the same server at the same time

    • One workstation scanning open ports on a target server

    • A denial-of-service attack in which an attacker sends a succession of SYN requests to a target's system

    • Excessive acknowledgements

    Correct Answer
    A. A denial-of-service attack in which an attacker sends a succession of SYN requests to a target's system
    Explanation
    SYN flood is a type of denial-of-service attack where an attacker floods a target's system with a series of SYN requests. The attacker sends a large number of SYN packets to the target server, but does not complete the handshake process by sending the final ACK packet. This causes the target system to allocate resources and keep waiting for the final ACK, eventually exhausting its resources and making it unable to respond to legitimate requests.

    Rate this question:

  • 4. 

    IDP (Intrusion Detection & Prevention) devices typically operate in what mode?

    • Route mode

    • Transparent mode

    • Sniffer mode

    • ARP mode

    Correct Answer
    A. Transparent mode
    Explanation
    IDP devices typically operate in transparent mode. In this mode, the devices are placed between the network segments and act as a bridge, allowing the traffic to pass through without any disruption. The devices monitor the network traffic for any suspicious or malicious activity and can take preventive actions to block or mitigate the threats. Transparent mode is preferred as it does not require any changes to the existing network infrastructure and does not introduce any additional latency or points of failure.

    Rate this question:

  • 5. 

    Protocol Anomolies are?

    • Known attacks launched on network devices

    • Non IP traffic

    • Traffic outside normal protocol behaviour that could be seen as a new network attack

    • Traffic inside IPSec that could contain a know attack signature

    Correct Answer
    A. Traffic outside normal protocol behaviour that could be seen as a new network attack
    Explanation
    Protocol anomalies refer to traffic that deviates from the normal behavior of a protocol and could potentially be interpreted as a new network attack. These anomalies can include unusual packet structures, unexpected sequencing or timing, or any other behavior that does not conform to the standard protocol specifications. Detecting and analyzing protocol anomalies is important for identifying and mitigating potential network attacks, as they may indicate the presence of malicious activity or attempts to exploit vulnerabilities in the network.

    Rate this question:

  • 6. 

    If traffic doesn't match a rule on the firewall what is the default action?

    • Permit

    • Deny

    • Log

    • Send an ICMP message to the destination

    Correct Answer
    A. Deny
    Explanation
    If traffic doesn't match a rule on the firewall, the default action is to deny the traffic. This means that the firewall will block or reject the traffic and not allow it to pass through.

    Rate this question:

  • 7. 

    Source NAT typically occurs?

    • For traffic passing out to the internet where not enough IP addresses are available

    • To hide internal addresses

    • Both a) and c)

    • Only translates source IP addresses and never source ports

    Correct Answer
    A. For traffic passing out to the internet where not enough IP addresses are available
    Explanation
    Source NAT typically occurs for traffic passing out to the internet where not enough IP addresses are available. This is because Source NAT allows multiple devices within a private network to share a single public IP address when communicating with the internet. By translating the source IP addresses of the outgoing traffic, Source NAT enables the private network to connect to the internet using a limited number of available public IP addresses.

    Rate this question:

  • 8. 

    What does DOS stand for when it comes to firewalling?

    • Denied Operating System

    • Distributed Office Scan

    • Denial of Service

    • Distributed SYN flood

    Correct Answer
    A. Denial of Service
    Explanation
    DOS stands for Denial of Service when it comes to firewalling. Denial of Service refers to a type of cyber attack where the attacker overwhelms a network or system with excessive traffic or requests, causing it to become unavailable to legitimate users. Firewalls are security measures that protect networks by monitoring and controlling incoming and outgoing network traffic. In this context, DOS refers to the ability of a firewall to detect and prevent denial of service attacks, ensuring the availability and integrity of the network.

    Rate this question:

  • 9. 

    IPSec is?

    • Security for IPv4 traffic

    • Short for IP Security

    • Used for site to site and remote client VPN access

    • All of the above

    Correct Answer
    A. All of the above
    Explanation
    IPSec is a protocol suite used for securing IPv4 traffic. It provides authentication, confidentiality, and integrity for data transmitted over IP networks. It is also commonly referred to as IP Security. IPSec can be used for both site-to-site and remote client VPN access, making it a versatile solution for securing network communications. Therefore, the correct answer is "all of the above."

    Rate this question:

  • 10. 

    IDS/IDP devices operate at what layers in the OSI model?

    • Layers 3

    • Layers 3-4

    • Layers 3- 7

    • Layer 6

    Correct Answer
    A. Layers 3- 7
    Explanation
    IDS/IDP devices operate at layers 3-7 in the OSI model. This means that they can analyze network traffic and detect intrusions or malicious activity at various levels, including the network layer (layer 3), transport layer (layer 4), session layer (layer 5), and application layer (layer 7). By operating at these layers, IDS/IDP devices can provide a more comprehensive and detailed analysis of network traffic, allowing for better detection and prevention of security threats.

    Rate this question:

Quiz Review Timeline (Updated): Mar 21, 2023 +

Our quizzes are rigorously reviewed, monitored and continuously updated by our expert board to maintain accuracy, relevance, and timeliness.

  • Current Version
  • Mar 21, 2023
    Quiz Edited by
    ProProfs Editorial Team
  • Mar 11, 2011
    Quiz Created by
    Apalani

Related Topics

Recent Quizzes

Quiz: Do you Know About the Norton Family of Products? Quiz: Do you Know About the Norton Family of Products?
SEC Technologies and Tools - Cyber Security Quiz SEC Technologies and Tools - Cyber Security Quiz
Introduction to Cyber Security with Types of Hackers Introduction to Cyber Security with Types of Hackers
FTC Cybersecurity Basics Quiz FTC Cybersecurity Basics Quiz
Activity 3.1 - Principals of Cybersecurity Activity 3.1 - Principals of Cybersecurity
Cybersecurity Questions: MCQ Quiz! Cybersecurity Questions: MCQ Quiz!
How well you know about CyberSecurity? Trivia Quiz How well you know about CyberSecurity? Trivia Quiz
Online Safety Online Safety
Are You Cyber Safe Are You Cyber Safe

Featured Quizzes

Introduction to Computer: MCQ Questions With Answers Introduction to Computer: MCQ Questions With Answers
Best Friend Quiz: Are You Really Best Friends? Best Friend Quiz: Are You Really Best Friends?
Are You Ready For IQ Quiz: Test Your Intelligence Now Are You Ready For IQ Quiz: Test Your Intelligence Now
Which Sonic Character Are You? Which Sonic Character Are You?
Harry Potter House Quiz: Which Hogwarts House Do You Belong To? Harry Potter House Quiz: Which Hogwarts House Do You Belong To?
What Ethnicity Do I Look Like? What Ethnicity Do I Look Like?
Back to Top Back to top
Advertisement
×

Wait!
Here's an interesting quiz for you.

We have other quizzes matching your interest.