How do you distinguish between a bridge and a router?

The bridge connects multiple networks at the data link layer, while router connects multiple networks at the network layer

A bridge simply connects multiple networks, a router examines each packet to determine which network to forward it to.

"Bridge" and "router" are synonyms for equipment used to join two networks.

The bridge is a specific type of router used to connect a LAN to the global Internet.

The primary function of a firewall in a network is to:

Block unauthorized access to and from the network.

Analyze network traffic for malicious activity.

Encrypt data being sent over the network.

Detect and prevent intrusions on a server.

A VPN (Virtual Private Network) primarily secures communication over a public network by:

Encrypting the data to protect the confidentiality and integrity of the transmission.

Splitting traffic across multiple networks to avoid interception.

Hiding the IP addresses of both sender and receiver.

Compressing data to prevent interception.

The primary purpose of a Demilitarized Zone (DMZ) in network architecture is to:

Provide a buffer zone between trusted and untrusted networks.

Isolate the internal network from the external network entirely.

Enable faster data transmission within a secure network.

Reduce latency by optimizing packet routing.

An IPS (Intrusion Prevention System) differs from an IDS (Intrusion Detection System) in that an IPS:

Actively blocks or prevents detected threats in real-time.

Only logs malicious activity for later analysis.

Functions at the application layer only.

Monitors outbound traffic exclusively.

A company wants to use IPSec for two different use cases: 1. Server-to-server communication inside the same data center, where the goal is only to ensure confidentiality and integrity of the application data without hiding the internal IP addresses. 2. Branch-to-Headquarters VPN across the public Internet, where the goal is to encrypt traffic, authenticate peers, and prevent internal IP addresses from being exposed. Which IPSec configurations should be chosen for each case

Case 1 = ESP in Transport Mode, Case 2 = ESP in Tunnel Mode

Case 1 = AH in Transport Mode, Case 2 = ESP in Tunnel Mode

Case 1 = ESP in Tunnel Mode, Case 2 = AH in Transport Mode

Case 1 = AH in Tunnel Mode, Case 2 = ESP in Transport Mode

What does 802.1X provide in a network security context?

Port-based network access control.

End-to-end encryption of all network data.

A protocol for secure email communication.

A method for faster packet switching.

CISSP Domain 4

Authored by Miftah Rahman

Computers

Professional Development

Used 21+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

20 questions

Show all answers

MULTIPLE CHOICE QUESTION

5 mins • 1 pt

Which of the following best describes the role of a Bastion Host in network security architecture?

A highly secured computer designed to withstand attacks and provide controlled access to internal systems

A server placed in a DMZ that typically runs proxy or gateway services for external users.

Any host that has been hardened with security patches and minimal services to reduce its attack surface.

A network device that acts as an intermediary between external networks and protected internal resources.

MULTIPLE CHOICE QUESTION

5 mins • 1 pt

A financial company receives multiple phishing emails that appear to come from its official domain. The emails are sent from unauthorized mail servers, and some of them have been altered during transmission. The company wants to ensure that:
1. Only legitimate mail servers can send emails on behalf of the domain.
2. The integrity of the message is preserved so recipients know it has not been tampered with.
3. Clear policies are enforced so receiving mail servers can reject or quarantine fraudulent emails.
Which combination of technologies should the company implement to achieve these goals?

Use SPF to restrict authorized senders, DKIM for message integrity, and DMARC for policy enforcement.

Use SPF to encrypt emails, DKIM to authenticate users, and DMARC to provide end-to-end encryption.

Use DMARC to filter spam, SPF to provide confidentiality, and DKIM to hide sensitive data.

Use TLS for authentication, SPF for data integrity, and DMARC for message encryption.

MULTIPLE CHOICE QUESTION

5 mins • 1 pt

What does a Synchronous (SYN) flood attack do?

Forces Transmission Control Protocol /Internet Protocol (TCP/IP) connections into a reset state

Establishes many new Transmission Control Protocol / Internet Protocol (TCP/IP) connections

Empties the queue of pending Transmission Control Protocol /Internet Protocol (TCP/IP) requests

Exceeds the limits for new Transmission Control Protocol /Internet Protocol (TCP/IP) connections

MULTIPLE CHOICE QUESTION

5 mins • 1 pt

In a High Availability (HA) environment, what is the PRIMARY goal of working with a virtual router address as the gateway to a network?

The second of two routers can periodically check in to make sure that the first router is operational.

The second of two routers can better absorb a Denial of Service (DoS) attack knowing the first router is present.

The first of two routers fails and is reinstalled, while the second handles the traffic flawlessly.

The first of two routers can better handle specific traffic, while the second handles the rest of the traffic seamlessly.

MULTIPLE CHOICE QUESTION

5 mins • 1 pt

How does Encapsulating Security Payload (ESP) in transport mode affect in the Internet Protocol (IP)?

Authenticates the IP payload and selected portions of the IP header

Encrypts and optionally authenticates the complete IP packet

Encrypts and optionally authenticates the IP header, but not the IP payload

Encrypts and optionally authenticates the IP payload, but not the IP header

MULTIPLE CHOICE QUESTION

5 mins • 1 pt

Which of the following type of traffic can easily be filtered with a stateful packet filter by enforcing the context or state of the request?

ICMP

TCP

UDP

MULTIPLE CHOICE QUESTION

5 mins • 1 pt

When referring to the data structures of a packet, the term Protocol Data Unit (PDU) is used, what is the proper term to refer to a single unit of TCP data at the transport layer?

TCP Segment

TCP Datagram

TCP Frame

TCP Packet

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

18 questions

CIW IBA Lesson 5 Vocabulary

Quiz

•

8th Grade - Professio...

15 questions

CodeHS - Intro to Python - Conditionals Quiz

Quiz

•

9th Grade - Professio...

15 questions

Network Plus Pre Assessment

Quiz

•

Professional Development

20 questions

class 8

Quiz

•

Professional Development

20 questions

แบบทดสอบไมโครคอนโทรลเลอร์ (Microcontroller)

Quiz

•

Professional Development

20 questions

Mobile Apps PayKu

Quiz

•

1st Grade - Professio...

20 questions

Javascript Fundamental Practice

Quiz

•

Professional Development

20 questions

MS Office

Quiz

•

Professional Development

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

29 questions

Alg. 1 Section 5.1 Coordinate Plane

Quiz

•

9th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

11 questions

FOREST Effective communication

Lesson

•

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

Discover more resources for Computers

15 questions

LOTE_SPN2 5WEEK3 Day 2 Itinerary

Quiz

•

Professional Development

20 questions

Black History Month Trivia Game #1

Quiz

•

Professional Development

20 questions

90s Cartoons

Quiz

•

Professional Development

42 questions

LOTE_SPN2 5WEEK2 Day 4 We They Actividad 3

Quiz

•

Professional Development

6 questions

Copy of G5_U6_L3_22-23

Lesson

•

KG - Professional Dev...

20 questions

Employability Skills

Quiz

•

Professional Development

CISSP Domain 4

Which of the following best describes the role of a Bastion Host in network security architecture?

What does a Synchronous (SYN) flood attack do?

In a High Availability (HA) environment, what is the PRIMARY goal of working with a virtual router address as the gateway to a network?

How does Encapsulating Security Payload (ESP) in transport mode affect in the Internet Protocol (IP)?

Which of the following type of traffic can easily be filtered with a stateful packet filter by enforcing the context or state of the request?

When referring to the data structures of a packet, the term Protocol Data Unit (PDU) is used, what is the proper term to refer to a single unit of TCP data at the transport layer?

How do you distinguish between a bridge and a router?

ICMP and IGMP belong to which layer of the OSI model?

Which of the following is an IP address that is private (i.e. reserved for internal networks, and not a valid address to use on the Internet)?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers