Tcpip Answers

Security503–IntrusionDetectionInͲDepth–TCP/IPQuizAnswers
1. Howmanybitsinabyte?
a. 8
b. 16
c. 4
d. 2
2. Themaximumdecimalvaluethatcanberepresentedinabyteis:
a. 256
b. 255
c. 128
d. 127
3. WhatisaMACaddress?
a. TheIPaddressofthehost
b. TheembeddedIPprotocol
c. Thehardwareaddressassignedtothenetworkcard/interface
d. Theembeddedprotocolportaddress
4. WhatdoestheAddressResolutionProtocol(ARP)do?
a. ResolvesaknownIPaddresswithaMACaddress
b. ResolvesaknownMACaddresswithanIPaddress
c. Resolvesaknownnetworkinterfacenamewithahardwareaddress
d. ResolvesaknownMACaddresswithavendortype
5. AserverportofUDPorTCP53istypicallyassociatedwithwhatservice?
a. HTTP
b. DNS
c. FTP
d. RPC
6. HowdoesahostthathassentTCPdataknowthatthedatawasreceived?
a. ATCPacknowledgementissentfromthereceiver
b. AnICMPechoreplyissentfromthereceiver
c. AnincrementedTCPsequencenumberissentfromthereceiver
d. ASYN/ACKissentfromthereceiver
7. WhichofthefollowingbestcharacterizesTCPversusUDP(inmostcases)?
a. TCPislessreliableandquicker
b. TCPisslower,morereliable,andrequiresmoreoverhead
c. TCPisfaster,morereliable,andmorestreamlined
d. TCPislessreliableandconnectionͲoriented
8. WhichofthefollowingbestcharacterizesICMP
a. Itisusedtocommunicateerrorconditions
b. ItisusedforconnectionͲorientedcommunications
c. Itisusedforreliablecommunications
d. Itisusedforclient/servercommunications
9. ATCPflagofRESETindicates:
a. AnintentiontoopenanewTCPconnection
b. Anintentiontogracefullycloseandacknowledgetheterminationofbothsidesof
theconnection
c. AnintentiontoabortaTCPconnection
d. AnintentiontoclosetheconnectionafterallinͲtransitdataisreceived
10. TCPtypicallybeginsasessionwith:
a. ThethreeͲwayhandshakeofclienttoserverwithSYNset,theserverresponseof
SYN/ACK,andtheclientacknowledgementofACK
b. ThethreeͲwayhandshakeofservertoclientwithSYNset,theclientresponseof
SYN/ACK,andtheserveracknowledgementofACK
c. TCPisnotconnectionorientedsonohandshakeisrequired
d. AhandshakeconsistingoftheclientrequesttotheserverwithSYNsetandaserver
responseofaSYN
11. Avalueof6intheprotocolfieldoftheIPheaderrepresents:
a. AnembeddedprotocolofICMPfollowstheIPheader
b. AnembeddedprotocolofUDPfollowstheIPheader
c. AnembeddedprotocolofTCPfollowstheIPheader
d. AnembeddedprotocolofTCPprecedestheIPheader
12. IPfragmentationoccurswhen:
a. Thereceiverisnotreadyforallthedatafromthesender
b. WhentherearemorebytesintheIPpacketthanthesizeoftheMaximum
TransmissionUnitofalllinksfromsendertoreceiver
c. WhentherearemorebytesintheIPpacketthanthesizeofthereceivingTCP
window
d. WhentherearemorebytesinthepayloadthatfollowstheIPheaderthanthesize
oftheMaximumTransmissionUnitofalllinksfromthesendertoreceiver
13. SomeofthefieldsinanIPv4packetthatareusedbythereceivertoreassembleassociated
fragmentsare:
a. TheIPidentificationfieldtoidentifyallassociatedfragments,theMoreFragmentbit
toindicatewhetherornotmorefragmentsfollowthecurrentone,andthe
fragmentoffsettoindicatewhereaparticularfragmentfallsinrelationtoother
fragments
b. TheIPidentificationfieldtoidentifyallassociatedfragments,theMoreFragmentbit
toindicatewhetherornotmorefragmentsfollowthecurrentone,andtheTimeto
Livetoexpiremissingfragments
c. TheIPidentificationfieldtoidentifyallassociatedfragments,theMoreFragmentbit
toindicatewhetherornotmorefragmentsfollowthecurrentone,andtheTCP
checksumtodiscardcorruptedfragments
d. TheIPidentificationfieldtoidentifyallassociatedfragments,theMoreFragmentbit
toindicatewhetherornotmorefragmentsfollowthecurrentone,theIPoptionsto
routeallfragmentsthroughthesameintermediaterouters

14. TheTimetoLive(TTL)field/valuefoundintheIPheaderareusedto:
a. Makesureallassociatedfragmentsarrivewithagivenwindowoftime
b. ExpireTCPsegmentsintransitwhentheTTLvaluebecomes0
c. FlushDNSrecordsfromcachewhentheTTLvalueisexceeded
d. ExpireIPpacketsintransitwhentheTTLvaluebecomes0
15. WhatisthepurposeoftheIPchecksum?
a. Tomakesurethatdataintheentirepacketisnotcorruptedintransit
b. TomakesurethatdataintheIPheaderisnotcorruptedintransit
c. TomakesurethatdataintheEthernetframeisnotcorruptedintransit
d. Tomakesurethatdataintheembeddedprotocolisnotcorruptedintransit
16. WhatisacommonuseofDNS?
a. ResolutionofaMACaddresstoanIPaddress
b. ResolutionofanIPaddresstoaMACaddress
c. Resolutionofaportnumbertoaportservice
d. ResolutionofahostnametoanIPaddress
17. WhatisatypicalresponsefromahostthatreceivesaUDPpacketonanonͲlisteningport?
a. AUDPresetflagsettothesender
b. AUDPFINflagsettothesender
c. AnICMPportunreachablemessagetothesender
d. AUDPportunreachablemessagetothesender
18. SupposeaSYNpacketisspoofedusingarealIPaddressandthensenttoaserverthat
respondswithaSYN/ACKtotheactualIPaddress.HowdoestherealIPaddressrespond?
a. WithanacknowledgementsinceitdidnotsendtheSYN
b. WitharesetsinceitdidnotsendtheSYN
c. WithaduplicateSYNsinceitdidnotsendtheSYN
d. WithaTTLof0sinceitdidnotsendtheSYN
19. WhataresomedifferencesbetweenIPv4andIPV6?
a. TheyarethesameexcepttheIPversionnumberintheIPheaderisdifferent
b. TheIPv6addressesare4timeslargerandsomeofthefields/functionalitypreviously
intheIPv4headerarenowinIPv6extensionheaders
c. IPv6allowsmorethan255embeddedprotocols
d. IPv6packetsareautomaticallyencryptedwhileIPv4arenot
20. SupposeyouhadatoolthatallowedyoutocraftanICMPechorequestoverEthernet,but
youneededtotellthetoolhowtocomposetherequestlayerbylayerintheproperorder.
Howwouldyouorderthedifferentlayers?
a. Ethernetheader,followedbyIPheader,followedbyICMPheader,followedby
optionalICMPdata
b. IPheader,followedbyEthernetheader,followedbyICMPheader,followedby
optionalICMPdata
c. Theorderisunimportant–crafttheminanyorderandtheTCP/IPstackwill
properlyassemblethembeforesending
d. TheEthernetheadermustbefirst,andtheorderoftheIPheader,ICMPheader,and
dataisunimportantsincetheTCP/IPstackwillproperlyorderassemblethembefore
sending
21. Whatisthefunctionofarouter?
a. ItdeterminestheentirerouteforanIPpacketfromsourcetodestinationhost
b. ItusesARPtoroutethepackettothenexthop
c. ItusesDNStoroutethepackettothenexthop
d. ItattemptstomovetheIPpacketonehopclosertothedestination
22. TheIPprotocolfieldidentifies:
a. Thedestinationportofthepacket
b. Thesourceportofthepacket
c. Theembeddedserviceportofthepacket
d. Theembeddedprotocolofthepacket
23. AfunctionoftheTCPsequencenumberis:
a. ToassociateachronologicalnumberwitheachTCPsegment,allowingthereceiver
toproperlyreordertheindividualsegmentsofdata
b. Toinformthesenderofthenextexpectedchronologicalsequencenumberofthe
TCPsegment
c. ToreassembleIPfragments
d. ToincrementthehopcountonallTCPsegments
24. SupposeyouwanttopinganewknownIPv4addressonyournetwork.Whatmusthappen
first?
a. TheIPaddressmustberesolvedtoahostnameusingDNS
b. AnICMPrequestmustbesenttotheroutertolocatetheIPaddress
c. AnARPrequestmustbeissuedbyyourhosttodiscovertheMACaddressassociated
withtheIPaddress
d. Nothingneedstooccur;thehoststalkoverIPsimplyusingIPaddresses
25. WhenanIPv4packettraversesarouterwhataresomeofthetaskstheroutermust
perform?
a. DecrementtheTimetoLivevalueby1andrecomputetheIPchecksum
b. DecrementtheTimetoLivevalueby1andrecomputetheIPandembedded
protocolchecksums
c. DecrementtheTimetoLivevalueby1withoutchanginganychecksum
d. IncrementtheTimetoLivevalueby1andrecomputetheembeddedprotocol
checksum

Tcpip Answers

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Tcpip Answers

Uploaded by

Copyright:

Available Formats

Security503–IntrusionDetectionInͲDepth–TCP/IPQuizAnswers

You might also like

Tcpip Answers

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Tcpip Answers

Uploaded by

Copyright:

Available Formats

Security503–IntrusionDetectionInͲDepth–TCP/IPQuizAnswers

You might also like

Security503–IntrusionDetectionInͲDepth–TCP/IPQuizAnswers