Professional Documents
Culture Documents
allow only traffic that is part of a known connection. Which firewall configuration should
be deployed?
packet filtering
proxy
stateful packet inspection -------------
stateless packet inspection
2 Which three protocols are used for in-band management? (Choose three.)
FTP
HTTP
SNMP------
Telnet ---------
TFTP ----------
DHCP
Provide users with only the access to resources required to do their jobs. -------------
Provide the minimum level of permissions required for users to do their jobs. ---------
Remove all permissions from the users and grant permissions as they are requested.
Allow users to decide how much permission they need to accomplish their job tasks.
Provide full access to the users and gradually remove privileges over time.
4 A hacker has gained access to sensitive network files. In analyzing the attack, it is found
that the hacker gained access over a wireless segment of the network. It is further
discovered that the only security measure in place on the wireless network is MAC
Address Filtering. How is it likely that the hacker gained access to the network?
The hacker used a software tool to crack the shared hexadecimal wireless key.
The hacker obtained the MAC address of a permitted host, and cloned it on his wireless
laptop NIC.--------------
The attacker mounted a denial of service attack to overwhelm the firewall before
penetrating the wireless LAN.
The hacker gained wireless access to the MAC address database and added his own
MAC address to the list of permitted addresses.
5 What are two potential problems with using tape media to back up server data? (Choose
two.)
6 Which three items are normally included when a log message is generated by a syslog
client and forwarded to a syslog server? (Choose three.)
8 What is the term for the public network between the boundary router and the firewall?
"clean" LAN
intranet
DMZ ------------------
extranet
10 What AAA component assigns varying levels of rights to users of network resources?
auditing
accounting
authorization --------------
access control
authentication
acknowledgement
11 What network layer security protocol can secure any application layer protocol used
for communication?
HTTPS
IMAP
FTPS
IPSEC
TLS
12 What two measures help to verify that server backups have been reliably completed?
(Choose two.)
13 Before a technician upgrades a server, it is necessary to back up all data. Which type
of backup is necessary to ensure that all data is backed up?
daily
differential
full ---------------
incremental
partial
14 A server log includes this entry: User student accessed host server ABC using Telnet
yesterday for 10 minutes. What type of log entry is this?
authentication
authorization
accounting ---------------
accessing
applications
physical addresses
packet size
ports -------------
protocols -------------
16 Which benefit does SSH offer over Telnet when remotely managing a router?
encryption ---------------
TCP usage
authorization
connection using six VTY lines
17 Which three protocols describe methods that can be used to secure user data for
transmission across the internet? (Choose three.)
SMTP
IPSEC ------------
SSL -----------
HTTPS ---------
FTP
TFTP
18 Which AAA service reduces IT operating costs by providing detailed reporting and
monitoring of network user behavior, and also by keeping a record of every access
connection and device configuration change across the network?
authentication
accreditation
accounting ---------------
authorization
19 Which of the following does SNMP use to hold information collected about the
network?
query
broadcast
ICMP ping
trap ---------------
poll