FiltersDone

Question type

Essay

Multiple Choice

Short Answer

True False

Matching

Exam 12: Firewalls

Show Answer

Share

---

All types

Filters

Study FlashcardsPractice ExamLearn

Question 21

True/False

Review LaterAdd Note

Review Later

The packet filter is typically set up as a list of rules based on matches to fields in the IP or TCP header.

A) True
B) False

Correct Answer

verified

Show Answer

Question 22

Multiple Choice

Review LaterAdd Note

Review Later

An important aspect of a distributed firewall configuration is _________ .

A) change control
B) network frame locking
C) security monitoring
D) configuration alerting

E) All of the above
F) A) and B)

Correct Answer

verified

Show Answer

Question 23

True/False

Review LaterAdd Note

An example of application level gateway implementation is the SOCKS package.

One advantage of a packet filtering firewall is its simplicity.

A typical use of a _________ is a situation in which the system administrator trusts the internal users.

________ has a third network interface on bastion to a DMZ where externally visible servers are placed.This is a common appliance configuration for medium to large organizations.

Four types of firewalls are: Packet filtering, stateful inspection, circuit level proxy and _________ .

The _________ is the address of the system that originated the IP packet.

Due to the small number of variables used in access control decisions packet filter firewalls are susceptible to security breaches caused by improper configurations.

A circuit level proxy can be a stand alone system or it can be a specialized function performed by an application level gateway for certain applications.

The direction control determines the types of Internet services that can be accessed, inbound or outbound.

The default _________ policy increases ease of use for end users but provides reduced security because the security administrator must, in essence, react to each new security threat as it becomes known.

_________ can be an effective means of protecting a local system or network of systems from network based security threats while at the same time affording access to the outside world via wide area networks and the Internet.

A __________ attack is where the source station specifies the route that a packet should take as it crosses the Internet in the hopes that this will bypass security measures that do not analyze the source routing information.

The _________ attack is designed to circumvent filtering rules that depend on TCP header information.

A firewall may not act as a packet filter.

Common for large businesses and government organizations, the ________ configuration is required for Australian government use.

The _________ is the transport level port number which defines applications such as SNMP or TELNET.

A _________ sets up two TCP connections, one between itself and a TCP user on an inner host and one between itself and a TCP user on an outside host.Once the two connections are established TCP segments from one connection are relayed to the other without examining the contents.

Firewall functionality can also be implemented as a software module in a router or LAN switch.