In a security review meeting, you are asked to take appropriate security measures to mitigate IP spoofing attacks against the enterprise network. Which of the following methods should you apply?

You should set up a proxy server.

The head of cybersecurity at your enterprise has asked you to set up an IDS that can create the baseline of all system activities and raise an alarm whenever any abnormal activities take place, without waiting to check the underlying cause. Which of the following actions should you take?

You should set up an IDS with anomaly-based monitoring methodology.

You should set up an IDS with behavior-based monitoring methodology.

You should set up an IDS with heuristic monitoring methodology.

You should set up an IDS with signature-based monitoring methodology.

What action does a BPDU guard take when a BPDU is received from an endpoint and not a switch?

The port is disabled, and no traffic will be sent or received by the port.

The port remains active, and the traffic will be forwarded to another port.

The port is disabled, and no traffic will be sent by the port while it can still receive traffic.

The port remains active, and no traffic will be received by the port, but it can still send traffic.

Which of the following best describes an extranet?

Private network only accessed by an authorized party

Additional network bandwidth being allocated

Public network accessed by proper authorization

Private network accessed by the public

After encountering a network attack in your enterprise network, the chief network security engineer assigned you a project. The project was to create a vulnerable network that is similar to your enterprise network and entices the threat actor to repeat the attack. This is to analyze the behavior and techniques the attacker is using to ensure better defenses to your enterprise network in the future. Which of the following appliances should you use?

You should set up network access control.

You should set up behavioral IDS monitoring.

Which of the following best describes a network address translation?

A network address translation (NAT) enables a private IP network to connect to the internet.

A network address translation (NAT) blocks specific websites or attacks that attempt to exploit known vulnerabilities in specific client software.

A network address translation (NAT) can detect applications using deep packet inspection by examining the packet payloads and determining if they are carrying any malware.

A network address translation (NAT) is a device that combines several security functions like packet filtering, anti-spam, anti-phishing, anti-spyware, encryption, intrusion protection, and web filtering.

Which of the following best describes a host-based firewall?

A host-based firewall is a software firewall that protects a single endpoint device.

A host-based firewall is a hardware firewall that protects a single endpoint device.

A host-based firewall is a software firewall that protects multiple endpoint devices.

A host-based firewall is a hardware firewall that protects multiple endpoint devices.

You are analyzing the settings for your network's firewall. There is currently a log-only rule set for the source address 112.101.2.4. Which of the following has created a log entry in the firewall?

A rule is set to allow all packets from 112.101.2.1 through 112.101.2.22.

A rule is set to bypass all packets from 112.101.2.4.

A rule is set to bypass all packets from 112.101.1.1 through 112.101.2.5.

A rule is set to deny all packets from 112.101.1.1 through 112.101.2.11.

What is a jump box used for?

Restricting access to a demilitarized zone

Deceiving threat actors by intentionally creating vulnerable devices

Switching from a public IP to a private IP

Bypassing a firewall by generating a log entry

As a cybersecurity specialist, you are asked to defend the web app hosted by your enterprise from web application attacks like cross-site scripting, SQL injections, etc. Which of the following actions should you take?

You should install a proxy server.

As a cybersecurity expert, you are asked to take adequate measures to mitigate DDoS attacks on your enterprise servers. Which of the following techniques should you apply?

You should set up a DNS sinkhole.

You should set up a host-based firewall.

You should set up a proxy server.

You should set up a virtual private network.

Which of the following best describes a network hardware security module?

A network hardware security module is a trusted network computer that performs cryptographic operations.

A network hardware security module is a deception instrument used to deceive threat actors by intentionally deploying vulnerable devices.

A network hardware security module is an intrusion detection system that detects any intrusion in a network.

A network hardware security module is a hardware firewall that monitors incoming and outgoing traffic of a network.

You are asked to configure your firewall in such a way that the traffic from source address range 117.112.10.25 through 117.112.15.100 is allowed, while traffic from 117.112.12.25 through 117.112.13.25 is denied, and traffic from 117.112.12.200 through 117.112.13.10 is allowed. How should you configure the firewall?

Allow 117.112.10.25 through 117.112.15.100; deny 117.112.12.25 through 117.112.13.25; force-allow 117.112.12.200 through 117.112.13.10

Allow 117.112.10.25 through 117.112.15.100; deny 117.112.12.25 through 117.112.13.25; allow 117.112.12.200 through 117.112.13.10

Deny 117.112.12.200 through 117.112.13.10; deny 117.112.12.25 through 117.112.13.25; allow 117.112.10.25 through 117.112.15.100

Allow 117.112.12.200 through 117.112.13.10; deny 117.112.12.25 through 117.112.13.25; force-allow 117.112.10.25 through 117.112.15.100

You are asked to configure your enterprise network in such a way that the customer support team gets a higher priority in the network and can conduct customer video calls without any connectivity issues. Which of the following methods should you apply?

You should set up quality of service to give higher priority to the customer support team.

You should set up load balancers to give higher priority to the customer support team.

You should set up a VPN to give higher priority to the customer support team.

You should set up masking to give higher priority to the customer support team.

Which of the following best describes east-west traffic?

Movement of data from one server to another within a data center

Movement of data from a router to an enterprise switch

Movement of data from one unsecured endpoint to another

Movement of data from an unsecured endpoint to a server outside a data center

Module 9

Authored by Ansilo Alezy

Information Technology (IT)

Vocational training

Used 24+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

30 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 mins • 1 pt

Which of the following best describes DLP?

DLP is used to control access to digital assets.

DLP is a protocol used to transfer data within switches.

DLP is used to prevent leakage of confidential data.

DLP is a VPN protocol.

Answer explanation

DLP is used to prevent the leakage of confidential data.

MULTIPLE CHOICE QUESTION

30 mins • 1 pt

In an interview, you are asked to analyze the following statements regarding secure network designs and choose the correct one. Which of the following should you choose?

Zero trust is designed to make a system trusted.

Workgroup switches reside at the top of the hierarchy and carry traffic between switches.

Switches can transfer packets when VLAN members on one switch need to communicate with members connected to another switch.

Load balancers can detect and stop protocol attacks directed at a server or application.

Answer explanation

Load balancers can detect and stop protocol attacks directed at a server or application.

MULTIPLE CHOICE QUESTION

30 mins • 1 pt

In an interview, Max was asked to tell one difference between a software firewall and a virtual firewall. How should Max answer?

Software firewalls are locally installed on a device, whereas virtual firewalls run in the cloud.

Virtual firewalls are cost-free, whereas software firewalls are paid services.

Software firewalls can protect all the endpoints in a network, whereas virtual firewalls can protect only one device.

Virtual firewalls are used on almost all devices, whereas software firewalls are mostly used by enterprises.

Answer explanation

Software firewalls are locally installed on a device, whereas virtual firewalls are hosted on the cloud.

MULTIPLE CHOICE QUESTION

30 mins • 1 pt

Which of the following outlines the process of a proxy server?

User - internet - reverse proxy - forward proxy - user

User - forward proxy - Internet - reverse proxy - user

User - reverse proxy - Internet - forward proxy - user

User - forward proxy - user - reverse proxy - Internet

Answer explanation

The traffic from the user is first intercepted by the forward proxy. The forward proxy then connects to the internet, and the data is sent to the reverse proxy. The reverse proxy then sends the data to the user.

MULTIPLE CHOICE QUESTION

30 mins • 1 pt

How do NACs ensure that a device is safe to connect to a secure network?

The NAC encrypts all of the data on an unknown device before connecting it to the secured network.

The NAC issues a health certificate, only allowing healthy devices to connect to the secured network.

The NAC ensures the safety of the device by deleting all suspicious files.

The NAC moves suspicious data on an unknown device onto an external storage device.

Answer explanation

A network access control (NAC) issues a health certificate after analyzing the device, and the device can connect to the secure network only if it has good health.

MULTIPLE CHOICE QUESTION

30 mins • 1 pt

Sansa is a network security administrator at an enterprise. She is asked to take appropriate steps to defend against a MAC address spoofing attack in the enterprise network. Which of the following methods should Sansa apply?

Configure the switch so that no changes can be done once a port is assigned to a MAC address

Increase the capacity of CAM to allow for an increased volume of MAC addresses

Close all unused ports in the switch so that old MAC addresses are not allowed

Configure the switch so that only one port can be assigned per MAC address

Answer explanation

To prevent MAC address spoofing, you should configure the switch so that only one port can be assigned per MAC address.

MULTIPLE CHOICE QUESTION

30 mins • 1 pt

Which monitoring methodology will trigger the IDS if any application tries to scan multiple ports?

Signature-based monitoring

Heuristic monitoring

Anomaly-based monitoring

Behavior-based monitoring

Answer explanation

Heuristic monitoring triggers the IDS if any application tries to scan multiple ports.

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Popular Resources on Wayground

19 questions

Naming Polygons

Quiz

•

3rd Grade

10 questions

Prime Factorization

Quiz

•

6th Grade

20 questions

Math Review

Quiz

•

3rd Grade

15 questions

Fast food

Quiz

•

7th Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

20 questions

Inferences

Quiz

•

4th Grade

19 questions

Classifying Quadrilaterals

Quiz

•

3rd Grade

Module 9

Which of the following best describes DLP?

DLP is used to prevent the leakage of confidential data.

In an interview, you are asked to analyze the following statements regarding secure network designs and choose the correct one. Which of the following should you choose?

Load balancers can detect and stop protocol attacks directed at a server or application.

In an interview, Max was asked to tell one difference between a software firewall and a virtual firewall. How should Max answer?

Software firewalls are locally installed on a device, whereas virtual firewalls are hosted on the cloud.

Which of the following outlines the process of a proxy server?

The traffic from the user is first intercepted by the forward proxy. The forward proxy then connects to the internet, and the data is sent to the reverse proxy. The reverse proxy then sends the data to the user.

How do NACs ensure that a device is safe to connect to a secure network?

A network access control (NAC) issues a health certificate after analyzing the device, and the device can connect to the secure network only if it has good health.

Sansa is a network security administrator at an enterprise. She is asked to take appropriate steps to defend against a MAC address spoofing attack in the enterprise network. Which of the following methods should Sansa apply?

To prevent MAC address spoofing, you should configure the switch so that only one port can be assigned per MAC address.

Which monitoring methodology will trigger the IDS if any application tries to scan multiple ports?

Heuristic monitoring triggers the IDS if any application tries to scan multiple ports.

In a security review meeting, you are asked to take appropriate security measures to mitigate IP spoofing attacks against the enterprise network. Which of the following methods should you apply?

Setting an access control list (ACL) can prevent IP spoofing attacks as it can block unused and untrusted addresses.

The head of cybersecurity at your enterprise has asked you to set up an IDS that can create the baseline of all system activities and raise an alarm whenever any abnormal activities take place, without waiting to check the underlying cause. Which of the following actions should you take?

Anomaly-based monitoring creates a baseline, and whenever a slight deviation occurs in the activity, an alarm is raised.

Which of the following is associated with port security?

The spanning-tree protocol (STP) helps a switch find the right path to its destination by preventing looping.

Access all questions and much more by creating a free account

Popular Resources on Wayground