MAC Layer Firewalls Quiz

Questions and Answers

What layer of the OSI model do media access control layer firewalls operate on?

Physical layer

Application layer

Data link layer (correct)

Transport layer

What is the purpose of a hybrid firewall?

To only perform the work of a content filter

To combine elements of other types of firewalls (correct)

To only perform the work of a network intrusion detection and prevention system

To only perform the work of an SPI firewall

What is Unified Threat Management (UTM)?

A type of firewall that combines multiple network security functions (correct)

A type of firewall that only performs the work of a network intrusion detection and prevention system

A type of firewall that only performs the work of a content filter

A type of firewall that only performs the work of an SPI firewall

What is the purpose of a Next Generation Firewall (NGFW)?

To combine traditional firewall functions with other network security functions

What is a single bastion host?

A highly secured computer system placed outside the organization's network

What is the purpose of screened hosts?

To only allow traffic that meets specific criteria to pass through to the internal firewall

What is the purpose of screened subnets?

To create a DMZ between the internet and the internal network

A firewall designed to operate at the media access control sublayer of the network’s data link layer is called a ________ firewall.

media access control layer

Media access control layer firewalls make filtering decisions based on the specific host computer’s identity, as represented by its ________ address.

MAC or network interface card (NIC)

Hybrid firewalls combine the elements of other types of firewalls, such as packet filtering, application layer proxy, and media access control layer firewalls. They are also known as ________ firewalls.

UTM

Unified Threat Management (UTM) devices are categorized by their ability to perform the work of an SPI firewall, network intrusion detection and prevention system, content filter, spam filter, and malware scanner and filter. UTM is the first type of ________ firewall.

hybrid

Next Generation Firewall (NextGen or NGFW) is a security appliance that delivers unified threat management capabilities in a single appliance. NextGen firewalls combine traditional firewall functions with other network security functions, such as deep packet inspection, IDPSs, and the ability to decrypt encrypted traffic. NextGen firewalls are the second type of ________ firewall.

hybrid

The configuration that works best for a particular organization depends on three factors: the objectives of the network, the organization’s ability to develop and implement the architectures, and the ________ available for the function.

budget

A single bastion host is a highly secured computer system that is placed outside the organization's network and is designed to withstand attacks from the ________. All traffic from the internet must pass through this host before reaching the internal network.

internet

What is the main characteristic of a media access control layer firewall?

It filters traffic based on the host computer's MAC or NIC address

What is the main difference between Unified Threat Management (UTM) and Next Generation Firewall (NGFW)?

NGFW combines traditional firewall functions with other network security functions

What is the main challenge to the value proposition offered by firewalls?

The changing nature of the way networks are used

What is the main advantage of a single bastion host architecture?

It provides a high level of security

What is the main advantage of a screened host architecture?

It provides a good balance between security and cost-effectiveness

What is the main advantage of a screened subnet architecture?

It provides a high level of security

What is the main characteristic of a hybrid firewall?

It combines the elements of other types of firewalls