SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
Search
Test your basic knowledge |
Comptia Security +: Network Security
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Ping flooding - ping of death - smurf - fraggle - SYN flood - land - teardrop - email flood
packet filter
network
DoS attacks
ARP
2. A pool of public IP addresses is shared by a collection of private IP addresses
encrypt session key
teardrop
man in the middle and replay
dynamic NAT
3. An application layer gateway works at this layer of the OSI model
application
subnet
false negative
ARP poisoning
4. Monitors network traffic to identify possible attacks
NIDS
stateful inspection
false negative
repeater
5. Type of IP addresses not routed on the internet: 10.x.x.x - 172.16.x.x - 192.168.x.x
IP spoofing
private
HIDS
application gateway
6. Connects devices together to form a subnet - packet forwarding is based on MAC addresses - works at the data link layer of the OSI
NAT
deny by default
bastion host
switch
7. Firewall that intercepts and inspects messages before delivering them - placed between trusted and untrusted networks - degrade network traffic - also know as application gateway
promiscuous
man in the middle
proxy
0 - 1023
8. IDS that relies on the identification of known attack signatures
knowledge based
static NAT
tcp/ip hijacking
router
9. Cable with copper core - has no physical transmission security and is easy to tap - 10mbps - maximum length 500 meters
firewalls
man in the middle
coaxial
10base2
10. A level 3 firewall that remembers / tracks network connections - maintains a state table - distinguish which side of a firewall a connection was initiated - higher security
NIPS
router
static NAT
stateful inspection
11. IP spoofing attack where the attacker can monitor packets and participate in bidirectional communication
10base2
hub
informed
packet filter
12. Examines content passing through and makes a decision on the data based on a set of criteria - normal uses email filtering and web browsing
NIDS
ping flooding
content filter
protocol
13. Level 1 firewall that looks at the head of a packet - (not content) - operates rapidly - application independent - either allow or deny packets
VLAN
10Base5
packet filter
encrypt session key
14. Examines a entire packet and determines action based on a complex set of rules
dual homed
cat3
application gateway
man in the middle
15. A logical connection point allowing computers and software to communicate and exchange data
tcp/ip hijacking
port
session hijacking
fiber optic
16. Allows all traffic except traffic that is specifically denied - also known as permissive access
cat3
dual homed
NIDS network connections
allow by default
17. A physical or logical subnetwork that houses systems accessible to a larger untrusted network - usually the Internet - also known as DMZ
application gateway
website spoofing
screened subnet
stateful inspection
18. Connects devices together to form a subnet - broadcasts incoming packets to all devices
stateful inspection
IP spoofing
split horizon DNS
hub
19. Variation of the SYN flood where SYN packets are spoofed to have the same source and destination IP address and port
promiscuous
land attack
screened host
content filter
20. Protocol used to map an known IP address to its corresponding media access control (MAC) address
1024 - 49 -151
layered
ARP
split horizon DNS
21. A feature of firewalls / routers that disguise the IP address of internal systems allowing connection to the Internet using one public address
PBX (Private Branch Exchange)
NAT
spoofing
multiple interface firewall
22. Network configuration that permits selected outsiders access internal information systems
port address translation
null session
stateful inspection
extranet
23. Packet filtering - proxies - stateful inspection
spoofing
router
ping of death
firewalls
24. Evolved from IDS - monitors network traffic - detects and responds to attack on network
private
DNS spoofing
NIDS
NIPS
25. A firewall that checks all layers of a packet including content - verifying an expected response to a current communication session - also call a deep packet inspection
stateful inspection
NIDS
application
NIPS
26. Unauthenticated connections - creating the potential for a successful connection as an anonymous user
multi homed
dual homed
private
null session
27. IPS response method - terminate process/session - block/reject and redirect network traffic
active
firewalls
packet filter
spoofing
28. A group of hosts on logical network segment that communicate as if they were attached to the same broadcast domain - regardless of their physical location
ARP poisoning
VLAN
multi homed
man in the middle
29. An attacker redirects traffic by falsifying the IP address requested by ARP request
protocol analyzer
ARP poisoning
VLAN
proxy
30. Amplifies the signal of incoming packets before broadcasting them to the network
encrypt session key
repeater
private
firewalls
31. Well known ports - allow administrative access - used for network services - considered only ports allowed to transmit traffic thru a firewall
0 - 1023
firewalls
PBX (Private Branch Exchange)
network
32. Blocks all traffic from passing through the firewall except for traffic that is explicitly allowed - also known as restrictive access - best practice
ping of death
IP spoofing
blind
deny by default
33. Malicious activity not reported or detected
false negative
ARP
DNS spoofing
HIDS
34. Capture and analyze network traffic - also known as packet analyzer - sniffer - network analyzer
protocol analyzer
10Base5
DoS attacks
content filter
35. A person or program masquerades as another by presenting false information to gain an illegitimate advantage
content filter
spoofing
broadcast domain
active
36. Connects two or more subnets - determines the best path to forward packets based on packet header and forwarding table information
router
stateful inspection
dynamic NAT
knowledge based
37. A sniffer mode used to capture traffic addressed to/from another machine on the network
switch
screened host
promiscuous
NAT
38. Known as thicknet - 10mbps - limited to 500 meters
10Base5
VLAN
promiscuous
NAT
39. Cable used most in networks - maximum speed 1Gbps - maximum length 100 meters - susceptible to tap
behavior based
false negative
firewalls
twisted pair
40. Seeks to reduce the probability and/or impact of a specific risk below an acceptable threshold
VLAN
firewalls
behavior based
risk mitigation
41. Bastion host - dual homed firewall - multi homed firewall - screened host - screened subnet
10Base5
firewalls
firewall architectures
SYN flood
42. IP - email - website - DNS - and ARP
spoofing attacks
repeater
application gateway
private
43. An attacker redirects valid request to malicious sites by feeding a DNS server altered records which are retained in its cache
HIDS
DNS spoofing
session hijacking
man in the middle and replay
44. Promiscuous NIC to sniff passing traffic - admin NIC to send alerts to centralized management system
router
defense in depth
NIDS network connections
NAT
45. A decoy system - intentionally left exposed to attract/distract attackers - logs and monitors attacker activities
IP spoofing
ARP poisoning
honeypot
stateful inspection
46. Session hijacking countermeasure
PBX (Private Branch Exchange)
hub
encrypt session key
network
47. Man in the middle attack where the content of an intercepted message is altered before it is sent on
defense in depth
DMZ
store and forward
active
48. Cable designed for transmission at higher speeds (100Mbps - 2Gbps) and longer distances (2km) - expensive -eliminates signal tapping
active
PBX (Private Branch Exchange)
fiber optic
honeynet
49. Known as thinnet - 10mbps - limited to 185 meters
ping flooding
NIPS
10base2
static NAT
50. One private IP address is mapped to one public IP address
risk mitigation
static NAT
false negative
ping of death