16 - 17 Building and Securing a Small Network

Réussis tes devoirs et examens dès maintenant avec Quizwiz!

Which statement is true about Cisco IOS ping indicators?​

'U' may indicate that a router along the path did not contain a route to the destination address and that the ping was unsuccessful.

Which network service automatically assigns IP addresses to devices on the network?

DHCP

What is considered the most effective way to mitigate a worm attack?

Download security updates from the operating system vendor and patch all vulnerable systems.

By following a structured troubleshooting approach, a network administrator identified a network issue after a conversation with the user. What is the next step that the administrator should take?

Establish a theory of probable causes.

Which method is used to send a ping message specifying the source address for the ping?

Issue the ping command without specifying a destination IP address.

A technician is to document the current configurations of all network devices in a college, including those in off-site buildings. Which protocol would be best to use to securely access the network devices?

SSH

Which statement describes the ping and tracert commands?

Tracert shows each hop, while ping shows a destination reply only.

Match the description to the type of firewall filtering. (Not all options are used.) prevents or allows access based on web addresses or keywords

URL filtering

What is the difference between a virus and a worm?

Worms self-replicate but viruses do not.

A network engineer is analyzing reports from a recently performed network baseline. Which situation would depict a possible latency issue?

an increase in host-to-host ping response times

Match the description to the type of firewall filtering. (Not all options are used.) prevents or allows access based on the port numbers used in the request

application filtering

What is an accurate description of redundancy?

designing a network to use multiple paths between switches to ensure there is no single point of failure

Identify the steps needed to configure a switch for SSH. The answer order does not matter. (Not all options are used.) step two

generate RSA keys

Users are complaining that they are unable to browse certain websites on the Internet. An administrator can successfully ping a web server via its IP address, but cannot browse to the domain name of the website. Which troubleshooting tool would be most useful in determining where the problem is?

nslookup

Match the description to the type of firewall filtering. (Not all options are used.) prevents or allows access based on the IP or MAC addresses of the source and destination

packet filtering

Which type of attack involves an adversary attempting to gather information about a network to identify vulnerabilities?

reconnaissance

Identify the steps needed to configure a switch for SSH. The answer order does not matter. (Not all options are used.) step five

use the transport input ssh command

A network administrator is upgrading a small business network to give high priority to real-time applications traffic. What two types of network services is the network administrator trying to accommodate? (Choose two.)

-voice -video

Why would a network administrator use the tracert utility?

to identify where a packet was lost or delayed on a network

A user reports a lack of network connectivity. The technician takes control of the user machine and attempts to ping other computers on the network and these pings fail. The technician pings the default gateway and that also fails. What can be determined for sure by the results of these tests?

Nothing can be determined for sure at this point.

Identify the steps needed to configure a switch for SSH. The answer order does not matter. (Not all options are used.) step three

configure a domain name

Which command should be used on a Cisco router or switch to allow log messages to be displayed on remotely connected sessions using Telnet or SSH?

terminal monitor

Open the PT Activity. Perform the tasks in the activity instructions and then answer the question. Which command has to be configured on the router to complete the SSH configuration?

transport input ssh

Identify the steps needed to configure a switch for SSH. The answer order does not matter. (Not all options are used.) step one

create a local user

Which attack involves a compromise of data that occurs between two end points?

man-in-the-middle attack

Identify the steps needed to configure a switch for SSH. The answer order does not matter. (Not all options are used.) step four

use the login local command

A user is redesigning a network for a small company and wants to ensure security at a reasonable price. The user deploys a new application-aware firewall with intrusion detection capabilities on the ISP connection. The user installs a second firewall to separate the company network from the public network. Additionally, the user installs an IPS on the internal network of the company. What approach is the user implementing?

layered

A network engineer is troubleshooting connectivity issues among interconnected Cisco routers and switches. Which command should the engineer use to find the IP address information, host name, and IOS version of neighboring network devices?

show cdp neighbors detail

Which command can an administrator execute to determine what interface a router will use to reach remote networks?

show ip route

A network technician is troubleshooting an issue and needs to verify all of the IPv6 interface addresses on a router. What is the best command to use to accomplish the task?

show ipv6 interface

What information about a Cisco router can be verified using the show version command?

the value of the configuration register

What is the purpose of the network security authentication function?

to require users to prove who they are

When configuring SSH on a router to implement secure network management, a network engineer has issued the login local and transport input ssh line vty commands. What three additional configuration actions have to be performed to complete the SSH configuration? (Choose three.)

-Generate the asymmetric RSA keys. -Configure the correct IP domain name. -Create a valid local username and password database.

An employee complains that a Windows PC cannot connect to the Internet. A network technician issues the ipconfig command on the PC and is shown an IP address of 169.254.10.3. Which two conclusions can be drawn? (Choose two.)

-The PC cannot contact a DHCP server. -The PC is configured to obtain an IP address automatically.

On which two interfaces or ports can security be improved by configuring executive timeouts? (Choose two.)

-vty ports -console ports

Refer to the exhibit. An administrator is testing connectivity to a remote device with the IP address 10.1.1.1. What does the output of this command indicate?

A router along the path did not have a route to the destination.

An administrator decides to use "Elizabeth" as the password on a newly installed router. Which statement applies to the password choice?

It is weak because it uses easily found personal information.

When applied to a router, which command would help mitigate brute-force password attacks against the router?

login block-for 60 attempts 5 within 60

What feature of SSH makes it more secure than Telnet for a device management connection?

login information and data encryption

Which example of malicious code would be classified as a Trojan horse?

malware that was written to look like a video game

Match the description to the type of firewall filtering. (Not all options are used.) prevents or allows access based on whether the traffic is in response to requests from internal hosts

stateful packet inspection

Which firewall feature is used to ensure that packets coming into a network are legitimate responses to requests initiated from internal hosts?

stateful packet inspection


Ensembles d'études connexes

P. Bendroji nozologija ir patogenezė

View Set

Ch. 8: Raymond B. Cattell & Hans J. Eysenck, Ch. 7: Gordon Allport, Ch. 6: Erik Erikson, Ch. 5: Karen Horney, Big five personality Traits, Chapter 8: Raymond B. Cattell and Hans J. Eysenck., Psychology: Chapter 7: Gordon Allport, Chapter 6: Erik H. E...

View Set

NCLEX Qs 280 Exam 3: RA, Lupus, MG, GBS, ALS

View Set

UNIT 3: Muscular System (Mylab and Mastering)

View Set

Ch. 5-3 What is a database management system (DBMS)?

View Set

Ricci Chapter 44: Nursing Care of the Child With an Alteration in Mobility/Neuromuscular or Musculoskeletal Disorder

View Set

ID 2202 Art Nouveau Belgium/Scotland

View Set

Psy 136 Large-Scale Brain Networks

View Set