Which of the following devices is the most capable of providing infrastructure security?
Hub
Switch
Router
Modem
Upper management has decreed that a firewall must be put in place immediately, before your site suffers an attack similar to one that struck a sister company. Responding to this order, your boss instructs you to implement a packet filter by the end of the week. A packet filter performs what function?
Prevents unauthorized packets from entering the network.
Allows all packets to leave the network.
Allows all packets to enter the network
Eliminates collisions in the network
Which device stores information about destinations in a network (choose the best answer)
Firewall
As more and more clients have been added to your network, the efficiency of the network has decreased significantly. You're preparing a budget for next year, and you specifically want to address this problem. Which of the following devices acts primarily as a tool to improve network efficiency?
PBX
Which of the following can be implemented as a software or hardware solution and is usually associated with a device - a router, a firewall, NAT, and so on - used to shift a load from one device to another?
Proxy
Load Balancer
Which of the following are multiport devices that improve network efficiency?
Switches
Modems
Gateways
Concentrators
Your organization wants to prevent users from accessing file sharing web sites. Which of the following choices will meet this need?
Content Inspection
Malware Inspection
URL Filter
Web Application Firewall
Your organization wants to combine some of the security controls used on the network. What could your organization implement to meet this goal?
SSO
UTM
VPN
VLAN
Which of the following operates on the HIGHEST layer of the OSI model, and is the most effective at blocking application attacks?
IDS
WAF
Stateless Firewall
Which of the following network tools includes sniffing capabilities?
WAP
NAC
A HIDS reported a vulnerability on a system using an assigned vulnerability identification number. After researching the number on the vendor's web site, you identify the recommended solution and begin applying it. What type of HIDS is in use?
Network-based
Heuristic-based
Signature-based
Anomaly-based
Management is concerned about malicious activity on your network and wants to implement a security control that will detect unusual traffic on the network. Which of the following is the BEST choice to meet this goal?
Network firewall
Signature-based IDS
Anomaly-based IDS
Honeypot
Your network IDS recently detected an attack on a server. Upon investigation, you discover that the IDS does not have a signature on this attack. Instead, the IDS detected it using a heuristic analysis. Of the following choices, what is the MOST likely category of this attack?
Definition
CVE
Zero-day
Phishing
You are preparing to deploy an anomaly-based detection system to monitor network activity. Which of the following would you create first?
Flood guards
Signatures
Baseline
