logo image

Chapter 7 Network Defense

7.1.3 Practice Exam
You manage a network with a single switch. All hosts connect to the network through the switch. You want to increase the security of devices that are part of the accounting department. You want to make sure that broadcast traffic sent by an accounting computer is only received by other accounting computers, and you want to implement ACLs to control traffic sent to accounting computers through network. What should you do?
Use a router to configure a subnet for the accounting computers.
You want to reduce collisions by creating separate collision domains and virtual LANs. Which of the following devices should you choose?
Switch
Which of the following is an average of using switches to create virtual LANs?
Broadcast traffic travels to a subset of devices rather than to all devices on the network.
Which characteristic of a switch can improve bandwidth utilization and reduce the risk of sniffing attacks on the network?
A switch filters port traffic based on MAC address.
Which of the following devices does “NOT” examine the MAC address in a frame before processing or forwarding the frame?
Hub
What characteristic of hubs poses a security threat?
Hubs transmit frames to all hosts on all ports.
Which of the following describes how a router can be used to implement security on your network?
Use an access control list to deny traffic from specific IP addresses.
7.2.6 Practice Exams
A relative new employee in the data entry cubical farm was assigned a user account similar to that of all of the other data entry employees. However, audit logs have shown that this user account has been used to change ACLs on several confidential files and has accessed data in restricted areas. This situation indicates which of the following has occurred?
Privilege escalation
An attacker has obtained the logon credentials for a regular user on your network. Which type of security threat exists if this user account is used to perform administrative functions?
Privilege escalation
You’ve just deployed a new Cisco router that a connects several network segments in your Org. What should you do to increase the security of this device?
Use a stronger administrative password
While deploying a network application, a programmer adds functionally that allows her to access the running program, whithout authentication, to capture debugging data. what type of security weakness does this represent?
Backdoor
7.3.3 Practice Exam
Which of the following attacks, if successful, causes a switch to function like a hub?
MAC flooding
Which of the following switch attacks associates the attacker’s MAC address with the IP address of the victim’s devices?
ARP spoofing/poisoning
Which is a typical goal of MAC spoofing?
Bypassing 802.1x port-based security
Which protocol should you disable on the user access ports of a switch?
DTP
7.4.3 Practice Exam
You’ve just deployed a new Cisco router that a connects several network segments in your Org. What should you do to increase the security of this device? select two
Change the default admin username and password
Use an SSH client to access the router configuration
You’ve just deployed a new Cisco router that a connects several network segments in your Org. What should you do to increase the security of this device?
Move the router to a secure server room
You’ve just deployed a new Cisco router that a connects several network segments in your Org. What should you do to increase the security of this device?
Use SCP to back up the router configuration to a remote location
You can use a variety of methods to manage the configuration of a network router. Match the management option on the right with its corresponding description on the left.
SSL
Uses public-key crypto
HTTP
Transfers data in clear text
SSH
Uses public-key crypto
Telnet
Transfers data in clear text
Console port
cannot be sniffed
7.5.12 Practice Exam
A virtual LAN can be created using which of the following?
Switch
When configuring VLANs on a switch, what is used to identify VLAN membership of a device?
Switch port
You want to increase the security of your network by allowing only authenticated users to be able to access network devices through a switch. Which of the following should you implement?
802.1x
Which of the following applications typically use 802.1x authentication? select two
Controlling access through a wireless access point
Controlling access though a switch
You manage a network that uses a single switch. All ports within your building connect through the single switch. In the lobby of your building are three RJ-45 ports connected to the switch. You want to allow visitors to plug into these ports to gain Internet Access, but they should not have access to any other devices on your private network. Employees connected throughout the rest of your building should have both private and Internet access. Which feature should you implement?
VLANs
When configuring VLANs on a switch, what type of switch ports are members of all VLANs defined on the switch?
Trunk ports
You manage a network that uses a single switch. All ports within your building connect through the single switch. In the lobby of your building are three RJ-45 ports connected to the switch. You want to make sure that visitors cannot plug in their computer to the free network jacks and connect to the network. However, employees who plug into those same jacks should be able to connect to the network. What feature should you configure?
Port authentication
Which of the following solutions would you implement to eliminate switching loops?
Spanning Tree
You manage a single subnet with three switches. The switches are connected to provide redundant paths between the switches. Which feature prevents switching loops and ensures there is only a single active path between any two switches?
Spanning tree
In which of the following situations would you use port security?
You wanted to restrict the devices that could connect through a switch port
You are the network administrator for a city library. Throughout the library are several groups of computers that provide public access to the Internet. Supervision of these computers has been difficult. You’ve had problems with patrons brining personal laptops into the library and disconnecting the network cables from the library computers to connect their laptops to the Internet. The library computers are in groups of four. Each group of four computers is connected to a hub that is connected to the library network through an access point on a switch. You want to restrict access to the network so only the library computers are permitted connectivity to the internet. What can you do?
Configure port security on the switch
You run a small network for your business that has a single router connected to the internet and a single switch. You keep sensitive doc. on a computer that would like to keep isolated from other computers on the network. Other hosts on the network should not be able to communicate with this computer through the switch, but you still need to access the network through the computer. What should you implement?
VLAN
Which of the following best describes the concept of virtual LAN?
Device on the same network logically grouped as if they were on separate networks
Your company is a small start-up company that has leased office in a building shared by other businesses. All businesses share a common network infrastructure. A single switch connects all devices in the building to the router that provides Internet access. You would like to make sure that your computers are isolated from computers used by other companies. Which feature should you request to have implemented?
VLAN
You manage a network that uses multiple switches. You want to provide multiple paths between switches so that if one link goes down, an alternate path is available. What feature should your switch support?
Spanning tree
7.6.7 Practice Exam
You are concerned about protecting your network from network-based attacks from the Internet. Specially, you are concerned about attacks that have not yet been identified or that do not have prescribed protections. Which type of device should you use?
Anomaly based IDS
What do host based intrusion detection systems often rely upon to perform their detection activities?
Host system auditing capabilities
What actions can a typical passive intrusion Detection System (IDS) take when it detects and attack? select two
The IDS logs all pertinent data about the intrusion
An alert is generated and delivered via email, the console, or an SNMP trap
Which of the following activities are considered passive in regards to the functioning of an IDS? select two
Monitoring the audit trails on a server
Listening to network traffic
An active IDS system often performs which of the following actions? select two
Update filters to clock suspect traffic
perform reverse lookups to identify an intruder
Which IDS method searches for intrusion or attack attempts by recognizing patterns or identities listed in a database?
Signature based
You have just installed a new network-based IDS system that uses signature recognition. What should you do on a regular basis?
Update the signature files
What is the most common form of host based IDS that employs signature or pattern matching detection methods?
Anti-virus software
You have configured a NIDS to monitor network traffic. Which of the following describes an attack that is not detected by the NIDS device?
False negative
Which of the following describes a false positive when using an IPS device?
Legitimate traffic being flagged as malicious
If maintaining confidentiality is of the utmost importance to your organization, what is the best response when an intruder is detected on your network?
Disconnect the intruder
Which of the following devices is capable of detecting and responding to security threats?
IPS
You want to create a collection of computers on your network that appear to have valuable data, but are really computers configured with fake data that could entice a potential intruder. Once the intruder connects, you want to be able to observe and gather information about the methods of attack that is being deployed. What should you implement?
Honeynet
A honey pot is used for what purpose?
To delay intruders in order to gather auditing data
Your organization uses a Web server to host an e-commerce site…. What should you do?
Implement an application-aware IPS in front of the Web server.
7.7.4 Practice Exam
Match the fabric zoning implementation on the right with the appropriate description on the left
Hard zoning
The SAN switch is configured
Port zoning
Zone membership
Soft zoning
The SAN fabric
You are implementing an iSCSI SAN that will be used by the file servers in your organization. Which of the following are true in the scenario? select two
The Challenge-Handshake Authentication Protocol (CHAP)
The Internet Protocol Security (IPsec)
You are implementing a Fibre Channel SAN that will be used by the database servers in your organization. Which of the following are true in this scenario? select two
(ESP)
(DH-CHAP)
Match the SAN security control on the right with the appropriate description on the left.
Port locking
Binds specific SAN IDs to specific SAN switch ports
Fabric zoning
Makes devices within a zone visible only to others devices within that same zone.
Port type locking
Limits the types of devices
Virtual SANs
Devices a SAN into
LUN masking
Makes LUNs available
you are designing a Gibre Channel SAN implementation that will be used by the file servers in your org. Which of the following is true in this scenario?
LUN making provides weak security as it only obscures volume on the SAN

Need essay sample on "Chapter 7 Network Defense"? We will write a custom essay sample specifically for you for only .90/page

Can’t wait to take that assignment burden offyour shoulders?

Let us know what it is and we will show you how it can be done!
×
Sorry, but copying text is forbidden on this website. If you need this or any other sample, please register
Signup & Access Essays

Already on Businessays? Login here

No, thanks. I prefer suffering on my own
Sorry, but copying text is forbidden on this website. If you need this or any other sample register now and get a free access to all papers, carefully proofread and edited by our experts.
Sign in / Sign up
No, thanks. I prefer suffering on my own
Not quite the topic you need?
We would be happy to write it
Join and witness the magic
Service Open At All Times
|
Complete Buyer Protection
|
Plagiarism-Free Writing

Emily from Businessays

Hi there, would you like to get such a paper? How about receiving a customized one? Check it out https://goo.gl/chNgQy