A TCP connection is complete when it receives the_____________Packet.
SYN 0.0%
ACK 100.0%
SYN-ACK 0.0%
URG 0.0%
At which layer do the Firewalls generally work in the OSI model?
Network Layer 0.0%
Transport Layer 100.0%
Data Link Layer 0.0%
Physical Layer 0.0%
At which layer do the Proxy Firewalls function?
Session Layer 0.0%
Data Link Layer 0.0%
Transport Layer 0.0%
Application Layer 100.0%
None of the above 0.0%
At which layer does the Circuit-Level Firewall work?
Session Layer 100.0%
Data Link Layer 0.0%
Transport Layer 0.0%
Physical Layer 0.0%
Network Layer 0.0%
At which layer does the IPSec work?
Session Layer 0.0%
Network Layer 100.0%
Data Link Layer 0.0%
Application Layer 0.0%
Auditing is the process of tracking ________________________ on a system.
events 0.0%
errors 0.0%
access 0.0%
authentication 0.0%
All the above 100.0%
By using which command can you see the active TCP connections?
netstat 100.0%
ipconfig 0.0%
ifconfig 0.0%
traceroute 0.0%
Digital Certificates are used for___________.
Encryption 50.0%
Verification 0.0%
Attacking 0.0%
Authentication 50.0%
Expand TACACS.
Terminal Authenticated Controller Access System 0%
Terminal Access Controller Access-Control System 0%
Terminal Authorized Controller Access-Control System 0%
Terminal Authorized Controller Access-Control Securely 0%
Firewall can perform NAT to keep the record of various NAT entries. In which of the following tables does Firewall make those entries?
ARP Table 0.0%
NAT Table 100.0%
State Table 0.0%
TCP/IP Table 0.0%
Generally, a Firewall can not be managed by which of the following:
GUI 0.0%
CLI 0.0%
SSH 0.0%
FTP 100.0%
How many TCP flags are present in the Firewalls concept?
3 0.0%
2 0.0%
5 0.0%
8 0.0%
6 100.0%
HTTPS uses ___________ encryption technology to encrypt the communication between Client's system and Firewalls.
SHA 1 0.0%
MD5 0.0%
SSH 0.0%
SSL 100.0%
In a Stateful Inspection Firewall, the entries about the connection states are made in the_______________ table.
NAT Table 0.0%
State Table 100.0%
TCP/IP Table 0.0%
Connection Table 0.0%
ARP Table 0.0%
Keeping in mind the performance of Firewalls, the frequently used rules in the rule base________________.
should be kept at the top 0%
should be kept at the bottom 0%
should be kept in the middle 0%
none of the above 0%
Layer 2 Tunneling Protocol is a type of__________.
VPN 100.0%
Firewall 0.0%
Encryption Technology 0.0%
Authentication 0.0%
Over which of the following can a VPN be established?
WAN Link 0.0%
Internet Link 0.0%
DSL Link 0.0%
Wireless connectivity 0.0%
All of the above 100.0%
Port-Scanning tools helps the administrator in which of the following?
Finding the vulnerabilities 50.0%
Crashing the Firewall. 0.0%
Building a strong security policy. 50.0%
To test the Firewalls configuration. 0.0%
State whether True or False. A Firewall installed at the Gateway makes the whole network secure.
State whether True or False. All the DoS attacks can be blocked with the Firewalls.
State whether True or False. Logging should be enabled for all the rules in the Rule Base.
State whether True or False. The security of the Firewalls is a very important aspect.
State whether True or False. The vulnerabilities in the Network/System can be exploited by threats.
State whether True or False. When a rule is matched for a particular incoming/outgoing Packet and is executed, the Firewalls look for another rule in the rule base for the same Packet.
State whether True or False. When a user makes a request to open some access, he should be allowed to get whatever is required.
Suppose Adrian is the Network Security Engineer for ABC Company. He is asked by his manager to create a security policy in the Firewalls to open the HTTP service for a host_A(192.168.1.2) so that h...
Source: Web_Server(172.16.0.2), Destination(192.168.1.2): host_A, Service: HTTP(80), Action :Accept 0.0%
Source: Host_A(192.168.1.2), Destination:Web_Server(172.16.0.2), Service: HTTP(80), Action :Reject 0.0%
Source: Host_A(192.168.1.2), Destination:Web_Server(172.16.0.2), Service: SMTP(25), Action :Accept 0.0%
Source: Host_A(192.168.1.2), Destination:Web_Server(172.16.0.2), Service: HTTP(80), Action :Accept 100.0%
None of the above 0.0%
Suppose Eric is a Network Security Engineer in ABC Company. He is asked by his manager to block the access to unauthorized web sites being accessed by the users of the company. Can these unauthoriz...
Yes, the sites can be blocked 100.0%
No, the sites cannot be blocked 0.0%
Suppose Mark is the Network Security Engineer for ABC Company. He is asked by his manager to create a security policy in the Firewalls so that their internal network ABC_INTERNAL(172.16.0.0/24)may ...
Source: ABC_INTERNAL(172.16.0.0/24), Destination: DNS_SERVER(192.168.1.5), Service: HTTP(80), Action :Accept 0.0%
Source: ABC_INTERNAL(172.16.0.0/24), Destination: DNS_SERVER(192.168.1.5), Service: DNS(53), Action :Accept 100.0%
Source:Any, Destination: ABC_INTERNAL(172.16.0.0/24), service DNS(53), Action :Accept 0.0%
Source: ABC_INTERNAL(172.16.0.0/24), Destination: DNS_SERVER(192.168.1.5), Service: HTTP(80), Action :Drop 0.0%
None of the above 0.0%
Suppose Matt is the Network Security Engineer for XYZ Company. He is asked by his manager to create a security policy in the Firewalls so that host_A(172.16.0.3) may be able to access the HTTP serv...
Source: Host_A(172.16.0.3), Destination:Any , Service: HTTP(80), Action :Accept 100.0%
Source: Host_A(172.16.0.3), Destination:Any , Service: POP3(110), Action :Accept 0.0%
Source:Any, Destination: Host_A(172.16.0.3), Service: HTTP(80), Action :Accept 0.0%
Source: Host_A(172.16.0.3), Destination:Any , Service: HTTP(80), Action :Drop 0.0%
All of the above 0.0%
Suppose Sally is the Network Security Engineer for ABC Company. She is asked by her manager to create a security policy in the Firewalls so that their internal network ABC_INTERNAL(172.16.0.0/24) m...
Source: ABC_INTERNAL(172.16.0.0/8),Destination: MAIL_SERVER(192.168.1.5), Service: SMTP(25), Action :Accept 0.0%
Source:ABC_INTERNAL(172.16.0.0/16), Destination:MAIL_SERVER(192.168.1.15), Service: SMTP(25), Action :Accept 0.0%
Source:ABC_INTERNAL(172.16.0.0/24), Destination:MAIL_SERVER(192.168.1.15), Service: SMTP(25), Action :Accept 100.0%
Source:ABC_INTERNAL(172.16.0.0/24), Destination:MAIL_SERVER(192.168.1.15), Service:POP3(110), Action :Accept 0.0%
None of the above 0.0%
Syslog protocol is used for __________.
managing the Firewall 0.0%
event notification 100.0%
encryption 0.0%
VPN 0.0%
The______________ TCP flag can launch a DoS attack.
ACK 0.0%
FIN 0.0%
SYN 0.0%
SYN/ACK 100.0%
URG 0.0%
What are the advantages of DMZ?
It isolates the incoming traffic 0.0%
It enhances the security of the network 0.0%
It implements the multilayered approach to secure the resources 0.0%
All of the above 100.0%
What are the advantages of Stateful Inspection Firewall?
High Performance 0.0%
Security 0.0%
Transparency 0.0%
All of the above 100.0%
What are the functions of a Desktop Firewall?
It blocks the worms replicating in the Network 0.0%
It Controls the Access 100.0%
It blocks the attacks on a Desktop machine 0.0%
It scans the system for viruses 0.0%
What does AAA stand for?
Authentication, Accounting and Administration 0.0%
Advance, Application and Administration 0.0%
Authentication, Authorization, and Accounting 100.0%
None of these 0.0%
What does RADIUS stand for?
Remote Authorized Dial-In User Service 0.0%
Remote Access Dial-In User Service 100.0%
Remote Authentication Dial-In User Service 0.0%
Remote Authentication Dial-In User System 0.0%
What does sniffing mean?
Encrypting a data 0.0%
Decrypting a data 0.0%
Encryption algorithm 0.0%
Capturing data traveling across the network 100.0%
What exactly is a DoS?
It is a type of Attack 100.0%
It is a type of Virus 0.0%
It is a type of Firewalls 0.0%
It is a Security Policy 0.0%
What exactly is spoofing?
Sending a lot of mails on the same email address 0.0%
Sending a lot of SYN Packets 0.0%
Pretending to be someone you are not 100.0%
Sending spam mails 0.0%
What exactly is the Stateful Packet Filtering?
It is an attack 0.0%
It is a Firewall Technology 100.0%
It is a Security Policy 0.0%
What is Spoofing?
It is a Firewall Technology 0.0%
It is a Firewall Managing Technique 0.0%
It is a DOS attack 0.0%
It is Firewall Monitoring used while troubleshooting 0.0%
It is a technique used to gain unauthorized access to computers 100.0%
What is SSL?
Firewall Technology 0.0%
A type of Attack 0.0%
Encryption Technology 100.0%
Secure Site Linking 0.0%
What is the action on Packet when we apply the action, REJECT?
The Packet is dropped 100.0%
The ACK Packet is sent 0.0%
The FIN Packet is sent 0.0%
An error Packet is sent when a matched packet is detected 0.0%
All of the above 0.0%
What is the CIA concept?
Confidentiality, Integrity and Access 0.0%
Confidentiality, Integrity and Administration 0.0%
Continuity, Integrity and Authentication 0.0%
Confidentiality, Integrity and Availability 100.0%
What is the mode of operation of Firewalls?
Bridge mode 0.0%
Route mode 100.0%
Hybrid Mode 0.0%
VPN Mode 0.0%
What is the range of dynamic ports?
1-1024 0.0%
1024-2024 0.0%
0-1023 0.0%
49,152-65,535 100.0%
What is the range of reserved ports?
1-1024 100.0%
1024-2024 0.0%
0-1023 0.0%
1024-65,535 0.0%
What is the sequence in which the rules are executed in the Rule Base?
From the bottom of the rule base to the top of the rule base 0.0%
From the top of the rule base to the bottom of the rule base 100.0%
Random 0.0%
According to the priority 0.0%
Which among the following Firewalls is the slowest?
Packet filtering 0.0%
Stateful Packet inspection 100.0%
Application 0.0%
Session 0.0%
Which command is used to check whether a particular host is live or not?
netstat 0.0%
ipconfig 0.0%
ifconfig 0.0%
traceroute 0.0%
ping 100.0%
Which command is used to determine the route taken by a Packet?
netstat 0.0%
ipconfig 0.0%
ifconfig 0.0%
traceroute 100.0%
Which key is sharable in PKI (Public Key Infrastructure)?
Public key 0%
Private key 0%
Pre-shared key 0%
Encryption key 0%
Which layer of the OSI model is used by Packet filtering?
Transport Layer 0.0%
Network Layer 100.0%
Session layer 0.0%
Application Layer 0.0%
Which of the events listed below should be monitored?
Packets dropped 0.0%
Interface up/down 0.0%
Firewall restart 0.0%
Configuration Changes 0.0%
All the above 100.0%
Which of the following are Encryption algorithms?
SHA1 0.0%
AES 33.0%
MD5 0.0%
3DES 33.0%
DES 33.0%
CAST 0.0%
Which of the following are hash algorithms?
MD5 50.0%
AES 0.0%
SHA 1 50.0%
AES-128 0.0%
AES-256 0.0%
Which of the following are the functions of a Firewall?
It filters the packet 0.0%
It protects the resources 0.0%
It records and reports the events 0.0%
All of the above 100.0%
Which of the following can be categorized as a threat to secured resources?
Un-authorized access 0.0%
Impersonation 0.0%
Denial of service 0.0%
All of the above 100.0%
Which of the following can lead to the denial of service attacks?
Unplugging the cable of the main switch 0.0%
Spoofing the Packets 50.0%
Sending SYN Packets using the Zombies 50.0%
Shutting down the server being accessed 0.0%
Which of the following is a Firewall technology?
Packet Filters 0.0%
Network Address Translation Firewall 0.0%
Proxy Firewall 0.0%
Stateful Firewall 0.0%
All of the above 100.0%
Which of the following is a type of DoS attack?
TCP SYN attack 0.0%
Ping of Death 0.0%
SMURF attack 0.0%
All of the above 100.0%
Which of the following is helped by Logging?
Health of the Firewalls 25.0%
Status of the Firewalls 25.0%
Troubleshooting the issues 25.0%
Monitoring the Firewalls 25.0%
Which of the following ports is used by IMAP?
143 100.0%
153 0.0%
159 0.0%
25 0.0%
110 0.0%
Which of the following things should be kept in mind before implementing/configuring the Firewalls?
Network Diagram 0.0%
Traffic Flow 0.0%
Topology 0.0%
All of the above 100.0%
Which of the following things should be kept in mind while troubleshooting the Firewall problems?
Verification of the problem 0.0%
Status of the Firewall 0.0%
Firewall Logs 0.0%
Firewall Configuration 0.0%
All of the above 100.0%
Which of the following tools can be used to find vulnerabilities?
Ethereal 0.0%
Nessus 0.0%
TCPDUMP 0.0%
SNORT 100.0%
Which of the following tools can be used to monitor the Packets?
Wireshark 50.0%
Nessus 50.0%
TCPDUMP 0.0%
Snort 0.0%
Which of the protocols listed below will you scan at the Gateway to block the Spam Mails?
HTTP 0.0%
SMTP 33.0%
POP3 33.0%
IMAP 33.0%
Which of the reasons listed below lead to common attacks?
Un-authorized mail relaying 0.0%
Application bugs 0.0%
Operating System bugs 50.0%
Spoofing 50.0%
Which of the sources listed below are secured by Desktop Firewalls?
Personal Desktop 0.0%
Scanners 50.0%
Printers 50.0%
Personal Files and folders 0.0%
Which of the traffic listed below should be generally blocked?
Source routed Packets 0.0%
Broadcasts 0.0%
Peer-to-peer file sharing 0.0%
All of the above 100.0%
Which Packet is sent by the source to initiate the connection in TCP 3-way handshake?
SYN 100.0%
SYN/ACK 0.0%
ACK 0.0%
All of the above 0.0%
Which protocol is used by the DNS?
TCP 50.0%
UDP 50.0%
IP 0.0%
IPX 0.0%
Which type of Firewalls keep a track on the state of the connection?
Application Firewall 0.0%
Packet Filtering Firewall 0.0%
Stateful Packet Filtering Firewall 0.0%
Session Firewall 100.0%
Which zone is the trusted zone in Firewalls architecture?
Local Area Network (LAN) 0.0%
Wide Area Network (WAN) 0.0%
DMZ 100.0%
RAS 0.0%
Which zone is the un-trusted zone in Firewalls architecture?
Local Area Network(LAN) 0.0%
Wide Area Network(WAN) 100.0%
DMZ 0.0%
RAS 0.0%
You are asked by your manager to publish a web server. Which type of NATing will you use so that the Web Server can be accessed from the Internet?
Static NAT 0.0%
Dynamic NAT 100.0%
Source based NAT 0.0%
Destination based NAT 0.0%