Docsity
Log inSign up
Docsity
Prepare for your exams
Prepare for your exams

Study with the several resources on Docsity

Earn points to download
Earn points to download

Earn points by helping other students or get them with a premium plan

Guidelines and tips
Guidelines and tips
Sell on Docsity
Sell on Docsity
Docsity AI
Docsity AI
Log inSign up

Prepare for your exams

Study with the several resources on Docsity

Find documents

Prepare for your exams with the study notes shared by other students like you on Docsity

Search for your university

Find the specific documents for your university's exams

Docsity AINEW

Summarize your documents, ask them questions, convert them into quizzes and concept maps

Explore questions

Clear up your doubts by reading the answers to questions asked by your fellow students

Earn points to download

Earn points by helping other students or get them with a premium plan

Share documents
download point icon20 Points

For each uploaded document

Answer questions
download point icon5 Points

For each given answer (max 1 per day)

All the ways to get free points
Get points immediately

Choose a premium plan with all the points you need

Study Opportunities

Choose your next study program

Get in touch with the best universities in the world. Search through thousands of universities and official partners

Community

Ask the community

Ask the community for help and clear up your study doubts

Free resources

Our save-the-student-ebooks!

Download our free guides on studying techniques, anxiety management strategies, and thesis advice from Docsity tutors

Network Security Quiz: Firewalls, Intrusion Detection, and Access Control, Exams of Cybercrime, Cybersecurity and Data Privacy

California Career CollegeCybercrime, Cybersecurity and Data Privacy

A series of questions and answers related to network security, focusing on firewalls, intrusion detection systems, and access control policies. It covers topics such as configuring cisco asa devices, understanding firewall filters, and implementing security measures like anti-spoofing and password policies. The questions address practical scenarios and theoretical concepts relevant to network security professionals and students. It also explores the importance of protocol analyzers like wireshark and various access control models, providing a comprehensive overview of essential security practices and technologies. This material is useful for students and professionals in cybersecurity, offering insights into network defense strategies and security protocols. The document also touches on password strength and user account control, emphasizing the need for robust security measures.

Typology: Exams

2024/2025

Available from 08/10/2025

Professionalacademictutor
Professionalacademictutor 🇺🇸

2.8

(16)

15K documents

1 / 11

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
Cyb 220 - 4-2 Three Milestone:
Prioritizing Evaluation Criteria
The Cisco ASA device is a:
- Router
- Firewall
- Server
- Switch - ✔✔✔ANSWER-Firewall
Which of the following is not needed when enabling the ASA firewall?
- A username and password to perform authentication
- An access list enabling remote access to the device
pf3
pf4
pf5
pf8
pf9
pfa

Partial preview of the text

Download Network Security Quiz: Firewalls, Intrusion Detection, and Access Control and more Exams Cybercrime, Cybersecurity and Data Privacy in PDF only on Docsity!

Cyb 220 - 4 - 2 Three Milestone:

Prioritizing Evaluation Criteria

The Cisco ASA device is a:

  • Router
  • Firewall
  • Server
  • Switch - ✔✔✔ANSWER-Firewall Which of the following is not needed when enabling the ASA firewall?
  • A username and password to perform authentication
  • An access list enabling remote access to the device
  • IP address of the external network interface
  • IP address of the internal network interface (Not this one) - ✔✔✔ANSWER- For this lab, you select HTTP; which of the following is also an option on that list?
  • IPv
  • HTML
  • H.323 H.
  • IP addresses (Not this one) - ✔✔✔ANSWER- Which of the following will help against attacks on all firewalls?
  • Enabling anti-spoofing
  • Enabling tunneling
  • Enabling advanced options
  • Enabling access control lists - ✔✔✔ANSWER-Enabling anti-spoofing What is the order of steps for configuring a security policy?
  • Set up access, management access, setting the system clock, anti-spoofing
  • Set up access, setting the system clock, management access, anti-spoofing
  • Set up access, anti-spoofing, setting the system clock, management access
  • 65.19.28.154:1589 - ✔✔✔ANSWER-65.19.28.154: (The reason is because 65 is the server address sending traffic BACK to the client coming FROM the server. The TO server port would be 1589, but typically a server sends back the requested information on port 80 Port 80 is the port number assigned to commonly used internet communication protocol, Hypertext Transfer Protocol (HTTP). It is the default network port used to send and receive unencrypted web pages.) Which type of firewall filter can match incoming traffic to the corresponding outbound IP address connection by way of IP address and port?
  • Application-level gateway
  • Circuit-level gateway
  • Packet filtering
  • NAT filtering - ✔✔✔ANSWER-NAT filtering Where would an NIDS sit on a network? (Select the best answer.)
  • Inline
  • On the extranet
  • On the DMZ
  • Back to back - ✔✔✔ANSWER-Inline Which of the following can detect malicious packets and discard them?
  • NIDS
  • PAT
  • NIPS
  • Proxy server - ✔✔✔ANSWER-NIPS Which of the following is the strongest password?
  • This1sV#ryS3cure
  • Marqu1sD3S0d
  • |ocrian#
  • Thisisverysecure - ✔✔✔ANSWER-This1sV#ryS3cure (password strength is based on length, then complexity) Which of the following should be used to filter out activities such as instant messaging?
  • IP proxy
  • Application-level gateway
  • Internet content filter

Snort and Bro are examples of which of the following?

  • SPI
  • Proxy servers
  • Firewalls
  • NIDS - ✔✔✔ANSWER-NIDS Which of the following should not be included in a password when making it complex?
  • Numbers
  • Function keys
  • Special characters
  • Uppercase letters - ✔✔✔ANSWER-Function keys Which of the following devices should you use to keep machines behind it anonymous? (Select the best answer.)
  • Caching proxy
  • Circuit-level gateway
  • UTM
  • IP proxy - ✔✔✔ANSWER-IP proxy "Maximum and minimum password age" is part of which of the following?
  • Organizational unit
  • Registry
  • Password policy
  • Group policy editor - ✔✔✔ANSWER-Password policy What steps do you take to configure a NAT rule?
  • Click the arrow beside the Add button, configure the NAT rule, apply
  • Click the arrow beside the Add button, click OK
  • Click the Add button, click Add Nat Rule, apply
  • Click the Add button, configure the NAT Rule, click OK - ✔✔✔ANSWER- Click the arrow beside the Add button, configure the NAT rule, apply What class of network is depicted in the Lab Diagram?
  • A
  • B
  • C (Not this one, even though the 192 falls into class C network)
  • D - ✔✔✔ANSWER- What device will be used to test access to the web server in the lab?
  • Client machine
  • Vista access control
  • User Account Control - ✔✔✔ANSWER-User Account Control In a discretionary access control model, who is in charge of setting permissions to a resource?
  • Administrator and the owner
  • Any user of the computer
  • Administrator
  • Owner of the resource - ✔✔✔ANSWER-Owner of the resource Which of the following is an access control policy determined by a computer system and not by a user or owner?
  • MAC
  • Discretionary security policy
  • DAC
  • RBAC - ✔✔✔ANSWER-MAC Which of the following access control policies is based on sets of permissions involved in an operation?
  • MAC
  • DAC

- RBAC

  • Rule-based access control - ✔✔✔ANSWER-RBAC James has detected a network intrusion in his company. What should he check first?
  • Performance logs
  • Firewall logs
  • Event viewer
  • DNS logs - ✔✔✔ANSWER-Firewall logs