Security ( Filtering, DOS, Firewalls)

Is the only type of IPSec header

Provides integrity and authentication

Encapsulating Security Payload - provides Confidentially, Integrity and Authentication

Sits behind the UDP header

For access to internal devices on a network that sit behind a router / firewall

For all workstations to use when going out to the internet

When you need to translate internal and external ports

For internal workstations that need to access the internet sharing the same IP address

Many workstations trying to access the same server at the same time

One workstation scanning open ports on a target server

A denial-of-service attack in which an attacker sends a succession of SYN requests to a target's system

Excessive acknowledgements

Route mode

Transparent mode

Sniffer mode

ARP mode

Known attacks launched on network devices

Non IP traffic

Traffic outside normal protocol behaviour that could be seen as a new network attack

Traffic inside IPSec that could contain a know attack signature

Permit

Deny

Log

Send an ICMP message to the destination

For traffic passing out to the internet where not enough IP addresses are available

To hide internal addresses

Both a) and c)

Only translates source IP addresses and never source ports

Denied Operating System

Distributed Office Scan

Denial of Service

Distributed SYN flood

Security for IPv4 traffic

Short for IP Security

Used for site to site and remote client VPN access

All of the above

Layers 3

Layers 3-4

Layers 3- 7

Layer 6