Test your basic knowledge |

Router Security

Subject : it-skills
Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. War dialing






2. TCP and UDP Port 161






3. ESP - SSH - SSL/TLP






4. Local IP address before translation






5. TCP Port 22






6. The host can specify which route to take - which bypasses security






7. Refers to addresses used on the organization's private network






8. Translates multiple local addresses to a pool of global addresses by having the firewall select the first available global address; retains the global address for the duration of the connection






9. Dialer List - Routing Maps - Dynamic Routing Protocols - Controlling Remote Access - NAT'ing - Traffic Filtering






10. Layer 7






11. Access-list <number> <deny | permit> source source-wildcard log






12. Major Version






13. Router threat that includes manipulating router updates to cause traffic to flow to unauthorized destinations






14. Rebuild Number






15. Command to disable TCP small server on a router






16. UDP Port 514






17. Local and Remote






18. Authentication Header (AH) and Encapsulated Security Payload (ESP)






19. Command used to disable the ICMP message Address Mask Reply






20. A method of bypassing firewall or proxy restrictions by making the firewall think that it is getting traffic from a web browser






21. Layer 3






22. Geolocational positioning






23. Can stop spoofed IP addresses






24. 0x2F - or 47






25. Provides confidentiality - so it cannot be read by unauthorized parties






26. Access - Distribution - Core






27. Command used to disable the ICMP message Host Unreachable






28. What Local and Global refer to in NAT






29. PERMIT TCP ANY ANY ESTABLISHED






30. Layer 3






31. DENY IP ANY HOST <Broadcast Address>






32. Transport and Tunnel






33. 0x32 - or 50






34. DENY TCP ANY HOST <IP Address> EQ 23






35. Privilege levels that can have passwords assigned to them






36. Command to disable BOOTP Server






37. Attack that involves sending a large amount of UDP Echo packets to a subnet's broadcast address with a spoofed source IP address from that subnet






38. This server is used for querying a host about its logged in users






39. Cryptographic protocols that provide secure communications on the Internet for such thing as WWW - email - faxing - IM - and other data transfers






40. TCP and UDP Port 162






41. Software that passively monitors the connection requests flowing through the router; if a connection fails - the software sends a Reset to the server to clear up its state






42. Mode where only the payload of the IP packet is encrypted and/or authenticated






43. Router threat that includes manipulating router updates to cause traffic to flow to unauthorized destinations






44. Uses SSL port 443






45. Ip accesslist extended <name1> - permit IP any any reflect <filename> - ip accesslist extended <name2> - evaluate <filename> - int f0/0 - ip access-group <name1> out - ip access-group <name2> in






46. 0-99






47. What Inside and Outside refer to in NAT






48. Helps to mitigate problems that are caused by the introduction of malformed or spoofed IP source addresses into a network by discarding packets lacking a verifiable IP source address






49. Attack that involves transmitting a volume of connections that cannot be completed at the destination - causing the queue to fill up and denying service to legitimate user






50. Allows for a one-to-one translation of local to global addresses; used by web servers and mail servers so that users can connect to them via their global address