Networks and Security Past Paper PDF

Summary

This document is a past paper for a Networks and Security exam at Nanyang Polytechnic in 2024. The paper includes questions on firewalls, security zones, the DMZ, and intrusion detection systems. It covers the advantages and disadvantages of different types of IDS.

Full Transcript

Official (Closed) and Non-Sensitive

School of Information Technology
IT1153/IT1553/IT1653/IT1853/IT1953
InfoComm Security

Topic 4B – Networks and Security
1. Explain the difference between Ingress Filtering & Egress filtering firewalls.

2. Firewalls can be deployed to create three security zones to provide layers of
defense.
A. State & explain the three security zones.
B. Using a diagram, explain how you would deploy 2 firewalls to create the
above security zones.

3. Explain the purpose of the Demilitarized zone (DMZ).

4. Explain what is an Intrusion Detection System (IDS)?

5. List some of the activities which Host-Based IDS (HIDS) & Network-Based IDS (NIDS)
can monitor?

6. What are the advantages and disadvantages of Host IDS (HIDS) and Network IDS
(NDIS)?

7. In IDS, explain the difference between false positives & false negatives. Explain why
they are bad.

8. What is the difference between an IDS and a firewall?

~ End ~

2024s1 T4B Networks and Security.docx Page 1 of 1