Podcast
Questions and Answers
What type of attack involves overwhelming a target host with half-open TCP connections?
What type of attack involves overwhelming a target host with half-open TCP connections?
- Session hijacking attack
- Port scan attack
- Reset attack
- SYN flood attack (correct)
Which type of attack involves providing an invalid gateway to create a man-in-the-middle scenario?
Which type of attack involves providing an invalid gateway to create a man-in-the-middle scenario?
- ICMP attack
- DNS attack
- DHCP attack (correct)
- HTTP or HTTPS attack
What error might a network administrator receive when attempting to overwrite existing Manager ACL commands?
What error might a network administrator receive when attempting to overwrite existing Manager ACL commands?
- ACL does not exist
- ACL already exists (correct)
- ACL is corrupted
- ACL requires confirmation
In which direction was the standard ACL applied on interface serial 0/0/0 in the exhibit?
In which direction was the standard ACL applied on interface serial 0/0/0 in the exhibit?
What type of response does the target host send during a TCP SYN flood attack?
What type of response does the target host send during a TCP SYN flood attack?
Which component can a cybercriminal manipulate to intercept data in a man-in-the-middle attack?
Which component can a cybercriminal manipulate to intercept data in a man-in-the-middle attack?
What type of security threat does the scenario of a person calling to confirm a username and password for auditing purposes represent?
What type of security threat does the scenario of a person calling to confirm a username and password for auditing purposes represent?
Why are DDoS attacks, spam, and keylogging not examples of social engineering?
Why are DDoS attacks, spam, and keylogging not examples of social engineering?
In security attacks, how are zombies typically utilized?
In security attacks, how are zombies typically utilized?
Which security attack technique involves threat actors intercepting and controlling communication between a source and destination?
Which security attack technique involves threat actors intercepting and controlling communication between a source and destination?
What distinguishes social engineering from DDoS attacks and spam?
What distinguishes social engineering from DDoS attacks and spam?
Which of the following is an example of social engineering?
Which of the following is an example of social engineering?
What is the term used to describe the same pre-shared key or secret key, known by both the sender and receiver to encrypt and decrypt data?
What is the term used to describe the same pre-shared key or secret key, known by both the sender and receiver to encrypt and decrypt data?
Inbound ACLs must be __________ before they are processed.
Inbound ACLs must be __________ before they are processed.
When applying an extended ACL to an interface on a router, why would the 'ip access-group 101 in' configuration option be used?
When applying an extended ACL to an interface on a router, why would the 'ip access-group 101 in' configuration option be used?
When would a technician use the 'access-class 20' command in configuration?
When would a technician use the 'access-class 20' command in configuration?
In which type of attack is falsified information used to redirect users to malicious Internet sites?
In which type of attack is falsified information used to redirect users to malicious Internet sites?
What is the best ACL type and placement to use when an employee's internet privileges are revoked but still needs access to company resources?
What is the best ACL type and placement to use when an employee's internet privileges are revoked but still needs access to company resources?
What is a primary feature of an Intrusion Prevention System (IPS)?
What is a primary feature of an Intrusion Prevention System (IPS)?
What is the implicit action of both named and numbered ACLs?
What is the implicit action of both named and numbered ACLs?
What term is used to describe a potential danger to a company's assets, data, or network functionality?
What term is used to describe a potential danger to a company's assets, data, or network functionality?
Which statement about ACLs is true?
Which statement about ACLs is true?
In what direction would an extended ACL typically be applied on a router interface if it needs to filter incoming traffic?
In what direction would an extended ACL typically be applied on a router interface if it needs to filter incoming traffic?
What is the main purpose of using ARP cache poisoning in a network attack?
What is the main purpose of using ARP cache poisoning in a network attack?
What does a standard access list filter on?
What does a standard access list filter on?
In the second scenario, which command is used to deny traffic from the 172.16.0.0/16 network?
In the second scenario, which command is used to deny traffic from the 172.16.0.0/16 network?
Which ACL command should be used to permit all other traffic in the second scenario?
Which ACL command should be used to permit all other traffic in the second scenario?
What was the intention of the ACL configured on R1 in the third scenario?
What was the intention of the ACL configured on R1 in the third scenario?
On which interface was the standard ACL applied in the third scenario?
On which interface was the standard ACL applied in the third scenario?
Which of the following commands is NOT used to specify a range of IP addresses in an ACL?
Which of the following commands is NOT used to specify a range of IP addresses in an ACL?
Flashcards are hidden until you start studying
Study Notes
Standard Access Lists (ACLs)
- Standard ACLs only filter on the source IP address.
- To deny traffic from a specific network, use the
access-listcommand with thedenykeyword followed by the network address and subnet mask. - To permit all other traffic, use the
access-listcommand with thepermitkeyword and theanykeyword.
Access List Configuration
- When applying an ACL to an interface, the direction of the ACL is important (inbound or outbound).
- The ACL is applied to the interface using the
ip access-groupcommand.
Security Threats
- TCP SYN flood attack: a cybercriminal sends a continuous flood of TCP SYN session requests to a target host, overwhelming it with half-open TCP connections.
- Man-in-the-middle attack: a cybercriminal provides an invalid gateway to intercept data.
- Social engineering: an attacker tries to gain the confidence of an employee to obtain sensitive information.
- Zombies: infected machines that carry out a DDoS attack.
ACL Types and Placement
- Standard ACLs: permit or deny packets based on the source IPv4 address.
- Extended ACLs: permit or deny packets based on source and destination IP addresses, ports, and protocols.
- Placement of ACLs depends on the desired traffic control (inbound or outbound).
Network Security
- IPS (Intrusion Prevention System): identifies and stops malicious packets.
- Threat: a potential danger to a company's assets, data, or network functionality.
- Vulnerability: a weakness in a system that can be exploited by an attacker.
- Exploit: a piece of code or a program that takes advantage of a vulnerability.
ACL Commands
access-list: used to create a new ACL or add to an existing one.access-class: used to secure administrative access to the router.ip access-group: used to apply an ACL to an interface.ip access-group in: used to apply an ACL to an interface in the inbound direction.
Studying That Suits You
Use AI to generate personalized quizzes and flashcards to suit your learning preferences.
