


































Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
NETWORK SECURITY FIREWALL CONFIGURATION PRACTICE TEST 20
Typology: Exams
1 / 42
This page cannot be seen from the preview
Don't miss anything!



































โ Put the OSI layers in the correct order starting with Layer 7 and going down. 1 Physical 2 Data Link 3 Network 4 Transport 5 Session 6 Presentation 7 Application Answer: Application, Presentation, Session, Transport, Network, Data Link, Physical โ If a network admin sees an IP address only connecting after production hours, what tool should the admin use to start investigating who the IP address belongs to? ifconfig nmap
ssh nslookup Telnet Answer: nslookup Feedback: This would provide information about the IP configuration such as IP address, this information is known. โ What layer of the OSI model does a switch operate? Layer 2 (TCP Layer) Layer 2 (Node Layer) Layer 2 (Physical Layer) Layer 2 (Data Transfer) Layer 2 (Data-Link) Answer: Layer 2 (Data-Link) โ Although a NIC card is found in a router, switch and computer, the basic operation is to simply transmit a signal therefore; which layer(s) does a NIC card assigned on the OSI model? Layer 2 and 3
โ What is the best example of a type 1 hypervisor? a. A network admin uses a system management software to install a hypervisor on the users computers in the accounting department so they can run legacy software. b. A datacenter copies a database from a server on a schedule c. A network admin purchases a server to run a web sever, database server and virtual firewall d. A datacenter uses ESX to provide an application as a SaaS product for subscribers Answer: d. A datacenter uses ESX to provide an application as a SaaS product for subscribers โ Choose the best option that represents IaaS, PaaS and SaaS. a. IaaS is the networks servers, storage and underlying virtual infrastructure sold as a service, PaaS is the platform where the operating system level applications can be run, applications can be developed, databases can be hosted without having to manage the underlying infrastructure, SaaS is the end product or application where the client uses the application but is not responsible for the development, maintenance or hosting of an application.
b. SaaS is the networks servers, storage and underlying virtual infrastructure sold as a service, IaaS is the platform where the operating system level applications can be run, applications can be developed, databases can be hosted without having to manage the underlying infrastructure, PaaS is the end product or application where the client uses the application but is not responsible for the development, maintena Answer: a. IaaS is the networks servers, storage and underlying virtual infrastructure sold as a service, PaaS is the platform where the operating system level applications can be run, applications can be developed, databases can be hosted without having to manage the underlying infrastructure, SaaS is the end product or application where the client uses the application but is not responsible for the development, maintenance or hosting of an application. โ What is the best example of use of a public cloud? a. A network admin decides to virtualize a computer and keep the virtual machine running on a server onsite to increase reliability. b. A cloud engineer decides to move an application from a datacenter on campus to the new company owned datacenter located in a different state to increase bandwidth.
Answer: c. A company deploys virtualization architecture to provide on demand web servers, virtual routers, virtual firewalls, and test environments for a team of developers accessible through the internet. โ A hub is the device of choice to decrease traffic on a network segment. True False Answer: False โ A wireless deauthentication attack is an example of which type of attack: Denial of service attack Downgrade attack Brute-force attack Cryptographic attack Answer: Denial of service attack โ In a private cloud companies such as Amazon Web Services, Microsoft Azure, and Google Cloud Platform are responsible for the physical data center security concerns.
True False Answer: False โ Reports on a user's access and logs of successful and unsuccessful connection attempts are which part of AAA? Accounting Authentication Authorization Availability Answer: Accounting โ Data at rest provides an additional layer of protection by keeping data protected and inaccessible to the attacker if even the system is physically stolen.* True False Answer: True
Use antivirus software. Delete unused software. Keep software up to date. Answer: Use antivirus software Keep software up to date โ A switch forwards data only to the port that are connected to the destination device. It knows which port to forward it to based on which value?* Conf value IP address Port Number MAC Address Answer: MAC Address โ Bob receives a message from Alice that she sent using an asymmetric cryptography algorithm. What key should he use to decrypt the message?* Alice's public key Bob's private key Alice's private key
Bob's public key Answer: Bob's private key โ Which of the following topologies connects each device to a neighboring device?* Mesh Bus Ring Star Answer: Ring โ Which of the following topologies connects all devices to a single cable?* Bus Star Mesh Ring Answer: Bus
Presentation Session Application Answer: Data Link โ Which of the following are examples of social engineering? (Choose two)* Impersonation War dialing Phishing Dumpster diving Answer: Impersonation, Phishing โ James is working with his organization's platforms team to select a virtualization approach for use on test systems managed by developers. He is looking for a hypervisor that can run on top of the Windows operating system already installed on their laptops. What type of hypervisor is James looking for? Type 1 Type 4 Type 2
Type 3 Answer: Type 2 โ You were recently hired by a small start-up company. The company has no plans to setup their own datacenter. You have been asked to find a cloud service that would provide several physical servers or virtual machines that the company would be able to install whatever operating systems and applications they need. Which cloud service model should you use? IaaS PaaS SaaS TaaS Answer: IaaS โ In what type of attack does the attacker attempt to send unauthorized commands to a back-end database through a web application? Pass-the-hash Buffer overflow CSRF SQL Injection
โ Brian would like to secure his website. Which one of the following protocols is the best choice for encrypting communication between a website and its users? TLS AES 3DES TKIP Answer: TLS (Transport Layer Security) โ Which of the following are transport layer protocols? ICMP TCP and UDP TFTP IP Answer: TCP and UDP โ Which of the following describes a private cloud?* Allows cloud services to be shared by several organizations Provides cloud services to just about anyone
Integrates one cloud service with other cloud services Provides cloud services to a single organization Answer: Provides cloud services to a single organization โ Which of the following threat actors seeks to defame, shed light on, or cripple an organization or government? Black Hat Insider Threat Script Kiddie White Hat Answer: Black Hat โ Which of the following would provide the most effective security for a small wireless network? WPA WPA AES 3DES Answer: WPA
Sinkhole Jump box Darknet Answer: Honeypot โ A cybersecurity specialist is asked to identify the potential criminals known to attack the organization. Which type of hackers would the cybersecurity specialist be least concerned with? Gray hat hackers Black hat hackers Script kiddies White hat hackers Answer: White hat hackers โ Which attack floods a system with traffic in order to prevent legitimate activities or transactions from occurring? Brute force attack Privilege escalation Denial of service attack Man-in-the-middle attack
Answer: Denial of service attack โ What type of attack targets an SQL database using the input field of a user? Buffer overflow SQL injection XML injection Cross-site scripting Answer: SQL Injection โ Two or more computers connected together over a wide geographical area (e.g. county, country, globe). What type of network is this? LAN School Network WAN The Internet Answer: Wide Area Network (WAN) โ In cybersecurity, what does CIA stand for?