The chief information security officer (CISO) at a medium-sized healthcare company conducts an audit of the company's current security infrastructure. The company has Next Generation Firewalls (NGFWs) deployed at all external network boundaries, and the CISO is evaluating the possibility of supplementing or replacing the NGFWs with Unified Threat Management (UTM) devices. If the primary concern is to increase the network's security without introducing significant management complexity, which of the following strategies should the CISO consider implementing?

Deploy UTM devices alongside the NGFWs, with both sets of devices fully active.

Implement UTM devices internally and maintain NGFWs at network boundaries.

Switch off NGFWs and deploy UTM devices, but only activate UTM when detecting a threat.

Replace all NGFWs with UTM devices.

Which of the following describes the placement and role of a firewall in a network with a defense-in-depth strategy?

D. A firewall is typically at the network border and serves as a preventive control to enforce access rules for ingress and egress traffic.

A. A firewall is typically on internal routers and serves as a corrective control to mitigate denial-of-service (DoS) attacks.

B. A firewall is typically inline behind the border firewall and serves as a preventive control to enforce access rules.

C. A firewall is typically at the network border and serves as a detective control to identify malicious traffic.

An IT specialist working for a multinational confectionery company needs to fortify its network security. The firm has been dealing with intrusions where raw User Datagram Protocol (UDP) packets bypass open ports due to a virus. The specialist will analyze packet data to verify that the application protocol corresponds to the port. The company also wants to track the state of sessions and prevent fraudulent session initiations. Which of the following tools should the IT specialist prioritize deploying?

Deep packet inspection firewall

Which of the following BEST describes a stateful inspection?

Determines the legitimacy of traffic based on the state of the connection from which the traffic originated.

Designed to sit between a host and a web server and communicate with the server on behalf of the host.

Allows all internal traffic to share a single public IP address when connecting to an outside entity.

Offers secure connectivity between many entities and uses encryption to provide an effective defense against sniffing.

A new IT tech reviews changes made to a computer, including turning off unneeded logical ports, installing a host-based firewall, and updating the installed antivirus software. These actions are examples of what technique?

Securing the system against a network attack

Following a baseline configuration and registry settings

Controlling access to the system

Implementing host-based intrusion detection/prevention

The security team in a financial organization identified a zero-day vulnerability attack that enables cross-site scripting (XSS) attacks on its internal web portal. The chief information security officer (CISO) instructs the team to take immediate action. Which action MOST effectively minimizes the threat from the zero-day vulnerability and the potential XSS attacks?

Implement a web application firewall (WAF).

Restrict the number of login attempts.

Encourage staff to change their passwords.

Upgrade the hardware of the server.

Which of the following describes how access control lists can be used to improve network security?

An access control list filters traffic based on the IP header information, such as source or destination IP address, protocol, or socket number.

An access control list filters traffic based on the frame header, such as source or destination MAC address.

An access control list looks for patterns of traffic between multiple packets and takes action to stop detected attacks.

An access control list identifies traffic that must use authentication or encryption.

You have just installed a packet-filtering firewall on your network. Which options are you able to set on your firewall? (Select three.)

Destination address of a packet

A financial institution has recently undergone a significant network infrastructure upgrade and plans to enhance its network security. It is considering incorporating access control lists (ACLs) into its firewall rules and wants to establish a screened subnet for better security. Which of the following options would be the MOST beneficial course of action?

Incorporate ACLs into its firewall rules and set up a screened subnet

Maintain the existing firewall rules and ignore ACLs and screened subnet

Implement ACLs in its firewall and avoid creating a screened subnet

Establish a screened subnet but keep the existing firewall rules

When designing a firewall, what is the recommended approach for opening and closing ports?

Close all ports; open only ports required by applications inside the network.

Close all ports; open ports 20, 21, 53, 80, and 443.

Open all ports; close ports that expose common network attacks.

Open all ports; close ports that show improper traffic or attacks in progress.

A network administrator at an international baked goods corporation is configuring the company's security infrastructure. The company has recently had issues with raw Transmission Control Protocol (TCP) packets over open ports by malware, and the administrator needs to be able to inspect packet contents to ensure the application protocol matches the port. The company wants session-state tracking enabled and the ability to block malicious attempts to start bogus sessions. Which of the following devices should the network administrator focus on implementing?

Stateful multilayer inspection firewall

Stateful inspection layer 4 firewall

Stateless packet filtering firewall

A security administrator reviews the network configurations of a recently deployed server. The administrator notices that certain unnecessary services have access to the server, potentially creating vulnerabilities. The administrator decides to refine the access control list (ACL) to enhance the server's security. Which action will the security administrator MOST likely take when refining the ACL to ensure that only necessary services communicate with the server, thereby reducing potential attack vectors?

Deny all traffic by default and then allow exceptions based on requirement

Permit traffic only from trusted MAC addresses by default

Implement a stateful firewall for the server

Permit all incoming traffic to maintain functionality by default

5.4 Review

Authored by Joanna Hovis

Education

12th Grade

Used 3+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

25 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

If the primary concern is to secure against application-specific attacks, which of the following strategies should the network security engineer consider implementing?

Deploy Layer 7 firewalls on all network edges

Use Layer 4 firewalls for all internet-facing applications

Rely solely on Layer 4 firewalls for internal traffic

Deploy Layer 4 firewalls on all network edges

MULTIPLE SELECT QUESTION

30 sec • 1 pt

A company's web server is openly accessible to the internet, demanding heightened security measures. Considering the need for essential protocols and the introduction of a screened subnet, how should the company configure the firewall's access control lists (ACLs)?

Block all ports and protocols; enable a screened subnet for the server.

Allow all ports and protocols; do not create a screened subnet.

Permit only FTP, SSH, and enable File Integrity Monitoring; disregard screened subnet implementation.

Permit Hypertext Transfer Protocol (HTTP) and Hypertext Transfer Protocol Secure (HTTPS) on firewall access control lists (ACLs); establish a screened subnet for the web server.

MULTIPLE SELECT QUESTION

30 sec • 1 pt

A cyber team implements new hardening techniques after a data loss prevention (DLP) audit revealed increased data exfiltration. What is a tenet of host-based firewalls?

It provides controls for incoming and outgoing network traffic.

It describes software tools that monitor and protect individual hosts.

It uses signature-based detection and anomaly detection.

It requires deploying and configuring specialized software agents.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A newly established e-commerce company experienced increased web-based attacks on its online shopping platform. As a result, the company installed a Web Application Firewall (WAF) to enhance its security infrastructure. What primary function should the network security manager ensure the WAF is performing to protect the online platform from the MOST common types of web-based threats, such as Cross-site Scripting (XSS), Structured Query Language (SQL) Injection, and Cross-site Request Forgery?

Monitor traffic and block DDoS attacks

Encrypt data in transit

Validate input and output

Inspect HTTPS traffic

MULTIPLE SELECT QUESTION

30 sec • 1 pt

Which of the following are features of an application-level gateway? (Select two.)

Reassembles entire messages

Verifies that packets are properly sequenced

Uses access control lists

Stops each packet at the firewall for inspection

Allows only valid packets within approved sessions

MULTIPLE SELECT QUESTION

30 sec • 1 pt

A network security administrator's responsibilities include enhancing the enterprise's network infrastructure security posture. They deploy a Next Generation Firewall (NGFW) as part of their defense strategy. The enterprise mixes internal and external services, including a web application and a virtual private network (VPN) for remote access. Which of the following should the administrator primarily consider when implementing the NGFW to ensure effective security without disrupting normal operations?

Deploy the NGFW in inline mode, ensuring it analyzes all traffic while maintaining connectivity.

Position the NGFW as a jump server to manage secure access for all network services.

Set the NGFW to operate in a fail-open mode, ensuring continuous network service even if the firewall fails.

Use the NGFW as a load balancer, distributing network traffic across multiple servers.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A security architect designs a solution to protect the organization's network from advanced threats and provides granular access controls based on user roles. The organization has a significant volume of TLS-encrypted traffic that needs inspection and wants to integrate the solution with its network directory for role-based content filtering. Which of the following should the security architect consider the MOST appropriate option?

A standard stateful firewall with Layer 4 filtering capabilities

A jump server with enhanced remote access capabilities

A Web Application Firewall (WAF) designed primarily to protect web applications from targeted attacks

A Next Generation Firewall (NGFW) with Layer 7 application-aware filtering and intrusion prevention system (IPS) functionality

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

20 questions

PRUEBA DE AVANCE V1 - ING-SOC

Quiz

•

12th Grade

20 questions

FUCIONES VITALES

Quiz

•

12th Grade - University

20 questions

Kemagnetan

Quiz

•

12th Grade - University

20 questions

LO EDB

Quiz

•

9th - 12th Grade

20 questions

Reforzamiento TI LMIII

Quiz

•

12th Grade

20 questions

KUIZ SENI PERSEMBAHAN SEMESTER II TINGKATAN 1 2023

Quiz

•

9th - 12th Grade

20 questions

Statistics

Quiz

•

10th - 12th Grade

20 questions

La melodia (control)

Quiz

•

12th Grade

Popular Resources on Wayground

7 questions

History of Valentine's Day

Interactive video

•

4th Grade

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

15 questions

Valentine's Day Trivia

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

Discover more resources for Education

20 questions

Black History Month Trivia

Quiz

•

9th - 12th Grade

5.4 Review

If the primary concern is to secure against application-specific attacks, which of the following strategies should the network security engineer consider implementing?

A company's web server is openly accessible to the internet, demanding heightened security measures. Considering the need for essential protocols and the introduction of a screened subnet, how should the company configure the firewall's access control lists (ACLs)?

A cyber team implements new hardening techniques after a data loss prevention (DLP) audit revealed increased data exfiltration. What is a tenet of host-based firewalls?

Which of the following are features of an application-level gateway? (Select two.)

Jessica needs to set up a firewall to protect her internal network from the internet. Which of the following would be the BEST type of firewall for her to use?

Which of the following describes the placement and role of a firewall in a network with a defense-in-depth strategy?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Education