Match the type of information security threat to the scenario: information theft

obtaining trade secret documents illegally

installing virus code to destroy surveillance recordings for certain days

pretending to be someone else by using stolen information to apply for a credit card

preventing users from accessing a website by sending a large number of link requests in a short period

cracking the password of an administrator account on a server

Match the type of information security threat to the scenario: identity theft

pretending to be someone else by using stolen information to apply for a credit card

installing virus code to destroy surveillance recordings for certain days

preventing users from accessing a website by sending a large number of link requests in a short period

obtaining trade secret documents illegally

cracking the password of an administrator account on a server

Match the type of information security threat to the scenario: data loss

installing virus code to destroy surveillance recordings for certain days

pretending to be someone else by using stolen information to apply for a credit card

preventing users from accessing a website by sending a large number of link requests in a short period

obtaining trade secret documents illegally

cracking the password of an administrator account on a server

Match the type of information security threat to the scenario: disruption of service

preventing users from accessing a website by sending a large number of link requests in a short period

installing virus code to destroy surveillance recordings for certain days

pretending to be someone else by using stolen information to apply for a credit card

obtaining trade secret documents illegally

cracking the password of an administrator account on a server

Which example of malicious code would be classified as a Trojan horse?

malware that was written to look like a video game

malware that requires manual user intervention to spread between systems

malware that attaches itself to a legitimate program and spreads to other programs when launched

malware that can automatically spread from one system to another by exploiting a vulnerability in the target

What is the difference between a virus and a worm?

Worms self-replicate but viruses do not.

Viruses self-replicate but worms do not.

Worms require a host file but viruses do not.

Viruses hide in legitimate programs but worms do not.

Which attack involves a compromise of data that occurs between two end points?

extraction of security parameters

Match the description to the type of firewall filtering: stateful packet inspection

prevents or allows access based on whether the traffic is in response to requests from internal hosts

prevents or allows access based on the operating system of the source or destination device

prevents or allows access based on the port numbers used in the request

prevents or allows access based on web addresses or keywords

prevents or allows access based on the IP or MAC addresses of the source and destination

Match the description to the type of firewall filtering: URL filtering

prevents or allows access based on web addresses or keywords

prevents or allows access based on the operating system of the source or destination device

prevents or allows access based on the port numbers used in the request

prevents or allows access based on whether the traffic is in response to requests from internal hosts

prevents or allows access based on the IP or MAC addresses of the source and destination

Match the description to the type of firewall filtering: application filtering

prevents or allows access based on the port numbers used in the request

prevents or allows access based on the operating system of the source or destination device

prevents or allows access based on whether the traffic is in response to requests from internal hosts

prevents or allows access based on web addresses or keywords

prevents or allows access based on the IP or MAC addresses of the source and destination

Match the description to the type of firewall filtering: packet filtering

prevents or allows access based on the IP or MAC addresses of the source and destination

prevents or allows access based on the operating system of the source or destination device

prevents or allows access based on the port numbers used in the request

prevents or allows access based on whether the traffic is in response to requests from internal hosts

prevents or allows access based on web addresses or keywords

When applied to a router, which command would help mitigate brute-force password attacks against the router?

login block-for 60 attempts 5 within 60

banner motd $Max failed logins = 5$

Identify the steps needed to configure a switch for SSH.

1. Configure a domain name 2. Generate RSA keys 3. Create a local user 4. Use the login local command. 5. Use the transport input ssh command.

1. Configure a domain name 2. Generate RSA keys 3. Create a local user 4. Use the login command. 5. Use the transport input ssh command.

1. Configure a domain name 2. Generate RSA keys 3. Create a local user 4. Use the login local command. 5. Use the password cisco command. 6. Use the transport input ssh command.

What feature of SSH makes it more secure than Telnet for a device management connection?

login information and data encryption

random one-time port connection

What is the advantage of using SSH over Telnet?

SSH provides secure communications to access hosts.

SSH operates faster than Telnet.

SSH supports authentication for a connection request.

What is the role of an Intrusion Prevention System (IPS)?

detecting and blocking of attacks in real time

connecting global threat information to Cisco network security devices

authenticating and validating traffic

filtering of nefarious websites

What is an accurate description of redundancy?

designing a network to use multiple paths between switches to ensure there is no single point of failure

configuring a router with a complete MAC address database to ensure that all frames can be forwarded to the correct destination

configuring a switch with proper security to ensure that all traffic forwarded through an interface is filtered

designing a network to use multiple virtual devices to ensure that all traffic uses the best path through the internetwork

What is the purpose of a small company using a protocol analyzer utility to capture network traffic on the network segments where the company is considering a network upgrade?

to document and analyze network traffic requirements on each network segment

to identify the source and destination of local network traffic

to capture the Internet connection bandwidth requirement

to establish a baseline for security analysis after the network is upgraded

An administrator is testing connectivity to a remote device with the IP address 10.1.1.1. What does the output of this command indicate?

A router along the path did not have a route to the destination.

Connectivity to the remote device was successful.

A ping packet is being blocked by a security device along the path.

The connection timed out while waiting for a reply from the remote device.

Which method is used to send a ping message specifying the source address for the ping?

Issue the ping command without specifying a destination IP address.

Issue the ping command from within interface configuration mode.

Issue the ping command without extended commands.

Issue the ping command after shutting down un-needed interfaces.

A network engineer is analyzing reports from a recently performed network baseline. Which situation would depict a possible latency issue?

an increase in host-to-host ping response times

a change in the bandwidth according to the show interfaces output

a next-hop timeout from a traceroute

a change in the amount of RAM according to the show version output

Which statement is true about Cisco IOS ping indicators?

‘U’ may indicate that a router along the path did not contain a route to the destination address and that the ping was unsuccessful.

‘!’ indicates that the ping was unsuccessful and that the device may have issues finding a DNS server.

‘.’ indicates that the ping was successful but the response time was longer than normal.

A combination of ‘.’ and ‘!’ indicates that a router along the path did not have a route to the destination address and responded with an ICMP unreachable message.

A user reports a lack of network connectivity. The technician takes control of the user machine and attempts to ping other computers on the network and these pings fail. The technician pings the default gateway and that also fails. What can be determined for sure by the results of these tests?

Nothing can be determined for sure at this point.

The TCP/IP protocol is not enabled.

The router that is attached to the same network as the workstation is down.

A network technician issues the C:> tracert -6 www.cisco.com command on a Windows PC. What is the purpose of the -6 command option?

It forces the trace to use IPv6.

It sets a 6 milliseconds timeout for each replay.

It limits the trace to only 6 hops.

It sends 6 probes within each TTL time period.

Why would a network administrator use the tracert utility?

to identify where a packet was lost or delayed on a network

to determine the active TCP connections on a PC

to check information about a DNS name in the DNS server

to display the IP address, default gateway, and DNS server address for a PC

A ping fails when performed from router R1 to directly connected router R2. The network administrator then proceeds to issue the show cdp neighbors command. Why would the network administrator issue this command if the ping failed between the two routers?

The network administrator wants to verify Layer 2 connectivity.

The network administrator suspects a virus because the ping command did not work.

The network administrator wants to verify the IP address configured on router R2.

The network administrator wants to determine if connectivity can be established from a non-directly connected network.

What information about a Cisco router can be verified using the show version command?

the value of the configuration register

the administrative distance used to reach networks

the routing protocol version that is enabled

the operational status of serial interfaces

By following a structured troubleshooting approach, a network administrator identified a network issue after a conversation with the user. What is the next step that the administrator should take?

Establish a theory of probable causes

Establish a plan of action to resolve the issue.

Verify full system functionality.

Test the theory to determine cause.

An employee complains that a Windows PC cannot connect to the Internet. A network technician issues the ipconfig command on the PC and is shown an IP address of 169.254.10.3. Which two conclusions can be drawn? (Choose two.)

The PC cannot contact a DHCP server.

The PC is configured to obtain an IP address automatically.

The DNS server address is misconfigured.

The default gateway address is not configured.

The enterprise network is misconfigured for dynamic routing.

Baseline documentation for a small company had ping round trip time statistics of 36/97/132 between hosts H1 and H3. Today the network administrator checked connectivity by pinging between hosts H1 and H3 that resulted in a round trip time of 1458/2390/6066. What does this indicate to the network administrator?

Something is causing a time delay between the networks.

H3 is not connected properly to the network.

Something is causing interference between H1 and R1.

Performance between the networks is within expected parameters.

When configuring SSH on a router to implement secure network management, a network engineer has issued the login local and transport input ssh line vty commands . What three additional configuration actions have to be performed to complete the SSH configuration? (Choose three.)

Generate the asymmetric RSA keys.

Configure the correct IP domain name.

Create a valid local username and password database.

Configure role-based CLI access.

Manually enable SSH after the RSA keys are generated.

Building and Securing a Small Network

Authored by Sewer Montano

Computers

University

Used 3+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

72 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which component is designed to protect against unauthorized communications to and from a computer?

security center

antimalware

antivirus

firewall

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which command will block login attempts on RouterA for a period of 30 seconds if there are 2 failed login attempts within 10 seconds?

RouterA(config)# login block-for 10 attempts 2 within 30

RouterA(config)# login block-for 30 attempts 2 within 10

RouterA(config)# login block-for 30 attempts 10 within 2

Answer explanation

COMMAND FORMAT:

login block-for <block-time> attempts <attempt-limit> within <time-period>

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the purpose of the network security accounting function?

to require users to prove who they are

to determine which resources a user can access

to keep track of the actions of a user

to provide challenge and response questions

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What type of attack may involve the use of tools such as nslookup and fping?

access attack

worm attack

reconnaissance attack

denial of service attack

Answer explanation

A Reconnaissance Attack is like the “scouting phase” of hacking. The attacker tries to gather as much information as possible about the target network before launching an actual attack.
nslookup → Used to query DNS and find out IP addresses or domain names.
fping → A faster version of ping used to scan networks for active devices.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Match each weakness with an example:
security policy weakness

The network administrator did not fully consider the implications of unauthorized users accessing the network.

When implementing an access list on a router, a network engineer did not filter a type of malicous traffic.

A network engineer is examining the operating system of a network device for vulnerabilities.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Match each weakness with an example:
configuration weakness

The network administrator did not fully consider the implications of unauthorized users accessing the network.

When implementing an access list on a router, a network engineer did not filter a type of malicous traffic.

A network engineer is examining the operating system of a network device for vulnerabilities.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Match each weakness with an example:
technological weakness

The network administrator did not fully consider the implications of unauthorized users accessing the network.

When implementing an access list on a router, a network engineer did not filter a type of malicous traffic.

A network engineer is examining the operating system of a network device for vulnerabilities.

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

71 questions

TIN HỌC 6_1,2,3

Quiz

•

6th Grade - University

72 questions

PRIMER EXAMEN COMPUTACIÓN - CUP (1-86)

Quiz

•

University

71 questions

Câu hỏi về Cơ khí Động lực

Quiz

•

11th Grade - University

70 questions

CS IGCSE Y1_FA_DATA TRANSMISSION

Quiz

•

9th Grade - University

70 questions

S3 Computer Systems Unit 2 Assessment

Quiz

•

7th Grade - University

71 questions

Examen Parcial - Diseño Grafico Publicitario

Quiz

•

University

68 questions

220-1001 uC 04062021

Quiz

•

University

70 questions

KTMT - CH02 - Logic

Quiz

•

University

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

54 questions

Analyzing Line Graphs & Tables

Quiz

•

4th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

Discover more resources for Computers

20 questions

CompTIA Network+ - Ports and Protocols

Quiz

•

University

Building and Securing a Small Network

Which component is designed to protect against unauthorized communications to and from a computer?

Which command will block login attempts on RouterA for a period of 30 seconds if there are 2 failed login attempts within 10 seconds?

COMMAND FORMAT:login block-for <block-time> attempts <attempt-limit> within <time-period>

What is the purpose of the network security accounting function?

What type of attack may involve the use of tools such as nslookup and fping?

Match each weakness with an example:security policy weakness

Match each weakness with an example:configuration weakness

Match each weakness with an example:technological weakness

Match the type of information security threat to the scenario:information theft

Match the type of information security threat to the scenario:identity theft

Match the type of information security threat to the scenario:data loss

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers

COMMAND FORMAT:

login block-for <block-time> attempts <attempt-limit> within <time-period>

Match each weakness with an example:
security policy weakness

Match each weakness with an example:
configuration weakness

Match each weakness with an example:
technological weakness

Match the type of information security threat to the scenario:
information theft

Match the type of information security threat to the scenario:
identity theft

Match the type of information security threat to the scenario:
data loss