Security ( Filtering, DOS, Firewalls)

10 Questions | Total Attempts: 176

SettingsSettingsSettings
Security ( Filtering, DOS, Firewalls) - Quiz

.


Questions and Answers
  • 1. 
    What is ESP when configuring IPSec?
    • A. 

      Is the only type of IPSec header

    • B. 

      Provides integrity and authentication

    • C. 

      Encapsulating Security Payload - provides Confidentially, Integrity and Authentication

    • D. 

      Sits behind the UDP header

  • 2. 
    Destination NAT typically occurs…
    • A. 

      For access to internal devices on a network that sit behind a router / firewall

    • B. 

      For all workstations to use when going out to the internet

    • C. 

      When you need to translate internal and external ports

    • D. 

      For internal workstations that need to access the internet sharing the same IP address

  • 3. 
    SYN flood relates to?
    • A. 

      Many workstations trying to access the same server at the same time

    • B. 

      One workstation scanning open ports on a target server

    • C. 

      A denial-of-service attack in which an attacker sends a succession of SYN requests to a target's system

    • D. 

      Excessive acknowledgements

  • 4. 
    IDP (Intrusion Detection & Prevention) devices typically operate in what mode?
    • A. 

      Route mode

    • B. 

      Transparent mode

    • C. 

      Sniffer mode

    • D. 

      ARP mode

  • 5. 
    Protocol Anomolies are?
    • A. 

      Known attacks launched on network devices

    • B. 

      Non IP traffic

    • C. 

      Traffic outside normal protocol behaviour that could be seen as a new network attack

    • D. 

      Traffic inside IPSec that could contain a know attack signature

  • 6. 
    If traffic doesn't match a rule on the firewall what is the default action?
    • A. 

      Permit

    • B. 

      Deny

    • C. 

      Log

    • D. 

      Send an ICMP message to the destination

  • 7. 
    Source NAT typically occurs?
    • A. 

      For traffic passing out to the internet where not enough IP addresses are available

    • B. 

      To hide internal addresses

    • C. 

      Both a) and c)

    • D. 

      Only translates source IP addresses and never source ports

  • 8. 
    What does DOS stand for when it comes to firewalling?
    • A. 

      Denied Operating System

    • B. 

      Distributed Office Scan

    • C. 

      Denial of Service

    • D. 

      Distributed SYN flood

  • 9. 
    IPSec is?
    • A. 

      Security for IPv4 traffic

    • B. 

      Short for IP Security

    • C. 

      Used for site to site and remote client VPN access

    • D. 

      All of the above

  • 10. 
    IDS/IDP devices operate at what layers in the OSI model?
    • A. 

      Layers 3

    • B. 

      Layers 3-4

    • C. 

      Layers 3- 7

    • D. 

      Layer 6

Back to Top Back to top