Quiz: Module 11 Security in Network Design
Which of the following is not one of the AAA services provided by RADIUS and TACACS+?
Administration
Which of the following criteria can a packet-filtering firewall not use to determine whether to accept or deny traffic?
Application data
Which device would allow an attacker to make network clients use an illegitimate default gateway?
DHCP server
Which policy ensures messages are discarded when they don't match a specific firewall rule?
Implicit deny
Active Directory and 389 Directory Server are both compatible with which directory access protocol?
LADP
At what layer of the OSI model do proxy servers operate?
Layer 7
Which principle ensures auditing processes are managed by someone other than the employees whose activities are being audited?
Separation of duties
What information in a transmitted message might an IDS use to identify network threats?
Signature
Which of the following ACL commands would permit web-browsing traffic from any IP address to any IP address?
access-list acl_2 permit https any any
Who is responsible for the security of hardware on which a public cloud runs?
the cloud provider