Quiz 19B: Apply Network Hardening Techniques

To restrict network access at a device level

To prevent the attachment of unauthorized devices

To ensure that network hosts are fully patched

To configure network appliances securely

Requiring passwords to be at least eight characters long

Using multiple character classes (mixing letters, case, digits, and symbols)

Allowing passwords to be less than eight characters

Avoiding common passwords like "123456" or "password"

To restrict network access at a device level

To configure network appliances securely

To separate administrative permissions for different tasks

To prevent the attachment of unauthorized devices

Enforcing password complexity requirements

Disabling unneeded network services and protocols

Implementing MAC filtering on a switch

Configuring role-based access control

To prevent unauthorized access to switch ports

To limit the number of permitted MAC addresses on a port

To mitigate ARP cache poisoning attacks

ARP inspection

MAC filtering

DHCP snooping

Dynamic ARP inspection

Port-based network authentication

Dynamic ARP inspection

VLAN segmentation

MAC filtering

PVLANs are used to allow hosts within a VLAN to communicate directly with each other.

Isolated ports within a PVLAN can communicate only with promiscuous ports.

PVLANs are typically used to enforce VLAN segmentation policies.

Community ports within a PVLAN are isolated from each other.

To restrict access to specific network resources

To monitor network traffic for malicious activity

To prioritize network traffic based on application

To allow or deny traffic based on specified criteria

`iptables -S`

`iptables -L -v`

`iptables -A INPUT -s 10.1.0.1 -j ACCEPT`

`iptables -F`