CASP: Chapter 4 (1of2)

Which device operates at layer 3 of the OSI model and forwards traffic between subnets based on IP addresses?

Which device provides a foundational level of protection for a network by blocking or allowing traffic based on pre-configured rules, but does not inspect high-level protocols such as HTTP?

Which device is commonly associated with managing web traffic and can be implemented as either a physical appliance or a virtual machine, offering specialized software for configuring traffic management rules?

In a cloud platform like AWS, which component allows private subnets in a Virtual Private Cloud (VPC) to access the Internet while preventing inbound connections from the Internet to instances in the private subnet?

Which email security mechanism involves inspecting all inbound and outbound traffic, scanning for keywords, and utilizing behavioral and heuristic analyses to identify potential threats?

Which method of defending against Distributed Denial-of-Service (DDoS) attacks involves reducing the amount of throughput available to the server or service being attacked, thus protecting the network from consuming all available bandwidth?

Which approach for defending against Distributed Denial-of-Service (DDoS) attacks involves inspecting traffic for signs of malicious activity, such as CSRF, XSS, and SQL injection, using sophisticated rules designed to identify and prevent these attacks from reaching the target?

In a Unified Threat Management (UTM) system, what service is responsible for inspecting traffic to locate and block viruses, and may also function as a management server to deploy and configure virus protection for endpoint devices?

Which Unified Threat Management (UTM) service involves blocking MIME types, file extensions, applets (Java, ActiveX), and implementing Data Loss Prevention (DLP)?

What distinguishes a transparent proxy from a non-transparent proxy?