Question 1

An 8-bit value ____.&#10;A) can be between 0 and 128&#10;B) is between 00000001 and 11111111&#10;C) must have at least 3 0s&#10;D) is smaller than a 2-bit value

Accepted Answer

An 8-bit value is represented by 8 bits, which can be either 0 or 1, resulting in a total of 256 possible values. The binary representation of these values is between 00000000 (0 in decimal) and 11111111 (255 in decimal). Therefore, option B is the correct choice. Option A is incorrect because 0 is included as a possible value, and the maximum value is 255. Option C is incorrect because it is possible to have 0s or 1s in all 8 bits. Option D is incorrect because a 2-bit value can have 4 possible values, which is less than the 256 possible values of an 8-bit value.

Question 2

A stateless filter compares the header data against its ____ and forwards each packet as a rule is found to match the specifics of that packet.&#10;A) ACK flag&#10;B) rule base&#10;C) state table&#10;D) log

Accepted Answer

A stateless filter uses a rule base to determine how to process each packet based on its header data. The other options are not relevant to the operation of a stateless filter.

Question 3

Telnet is most often assigned to use port ____.&#10;A) 20&#10;B) 21&#10;C) 23&#10;D) 80

Accepted Answer

Telnet is assigned to use port 23. Ports 20 and 21 are assigned to File Transfer Protocol (FTP) for data transfer. Port 80 is assigned to Hypertext Transfer Protocol (HTTP) for web traffic.

Question 4

____ packet filters are useful for completely blocking traffic from a subnet or other network.&#10;A) Stateless&#10;B) Stateful&#10;C) Personal&#10;D) IP

Accepted Answer

Stateless packet filters are able to block traffic based on specific criteria such as source IP address, destination IP address, and port number. By configuring the filter to block traffic from a specific subnet or network, all traffic from that source will be completely blocked. Stateful packet filters are also capable of accomplishing this, but they maintain information about the state of the connections and therefore may not be as effective at blocking all traffic from a subnet or network. Personal and IP are not relevant options for this question.

Question 5

Packet-filter rules must account for all possible ports that a type of communication might use or for all variations within a particular protocol.

Accepted Answer

Packet-filter rules need to be comprehensive to effectively manage and control the flow of traffic based on types of communication and protocol variations, as they operate by allowing or blocking traffic to specific ports and protocols.

Question 6

The problem with fragmentation is that because the TCP or UDP port number is provided only at the beginning of a packet, it appears ____.&#10;A) only in fragments numbered 0&#10;B) only in fragments numbered above 0&#10;C) in all fragments&#10;D) in no fragments

Accepted Answer

The TCP or UDP port number is provided in the header of the original packet, which only appears in the first fragment (numbered 0) when a packet is fragmented. Subsequent fragments do not contain this header information.

Question 7

Some systems, like Windows and Linux, have built-in utilities that can filter packets on the TCP/IP stack of the server software.

Accepted Answer

Both Windows and Linux have built-in utilities like firewall and iptables respectively that can filter packets on the TCP/IP stack of the server software.

Question 8

The ____ describes the length of the packet header in 32-bit words and is a 4 bit value.&#10;A) Header checksum&#10;B) type of service&#10;C) total length&#10;D) Internet header length

Accepted Answer

The Internet header length field (IHL) describes the length of the packet header in 32-bit words and is a 4-bit value. It allows for variable-sized headers.

Question 9

One of the first IP header criteria you can filter on is the packet's ____.&#10;A) length&#10;B) ACK flag&#10;C) source IP address&#10;D) type of service

Accepted Answer

Filtering based on the source IP address can be useful to isolate traffic coming from specific hosts or networks.

Question 10

Stateless packet filtering is more secure than stateful packet filtering.

Accepted Answer

Stateful packet filtering maintains information about the state of network connections, which allows it to make more informed decisions about which packets to allow or block. This provides more comprehensive security than stateless packet filtering, which only considers the individual packet being evaluated. Therefore, stateful packet filtering is generally considered more secure than stateless packet filtering.

Question 11

The header field that indicates whether the packet is a fragment is ____.&#10;A) flags&#10;B) options&#10;C) protocol&#10;D) destination IP address

Accepted Answer

The answer of The header field that indicates whether the...

Question 12

____ are stand-alone hardware devices with self-contained components thar are purpose built to filter out network traffic that does not conform to established rules.&#10;A) Firewall appliances&#10;B) Routers&#10;C) Software firewalls&#10;D) Operating systems

Accepted Answer

The answer of ____ are stand-alone hardware devices with self-contained...

Question 13

Firewall ____ indicate whether a large number of echo messages are being received.&#10;A) logs&#10;B) state tables&#10;C) alerts&#10;D) errors

Accepted Answer

The answer of Firewall ____ indicate whether a large number...

Question 14

ICMP message type ____ indicates that a faster route has been located.&#10;A) 0&#10;B) 3&#10;C) 5&#10;D) 6

Accepted Answer

The answer of ICMP message type ____ indicates that a...

Question 15

Enabling external hosts to connect to your public servers in the DMZ, but not to hosts in the internal LAN, is an example of filtering on the ____.&#10;A) port number&#10;B) protocol&#10;C) source IP address&#10;D) destination IP address

Accepted Answer

The answer of Enabling external hosts to connect to your...

Question 16

TCP/IP includes ____ which are small manageable chucks of network data.&#10;A) Folders&#10;B) Frames&#10;C) Messages&#10;D) Packets

Accepted Answer

The answer of TCP/IP includes ____ which are small manageable...

Question 17

Using TCP or UDP port numbers can help you filter a wide variety of information, including SMTP and POP e-mail messages, NetBIOS sessions, ____, and Network News Transfer Protocol (NNTP) newsgroup sessions.

A) DNS requests
B) ICMP messages
C) stateful transfers
D) Trojan horses

Accepted Answer

The answer of Using TCP or UDP port numbers can...

Question 18

Packet filters examine packet headers and packet data when applying allow and deny rules.

Accepted Answer

The answer of Packet filters examine packet headers and packet...

Question 19

One type of network protocol attack takes advantage of the ICMP Echo Request message type by flooding a target computer with ICMP echo requests.

Accepted Answer

The answer of One type of network protocol attack takes...

Question 20

The header field that can contain a security field, which enables the sender to assign a classification level to the packet is ____.&#10;A) flags&#10;B) options&#10;C) protocol&#10;D) destination IP address

Accepted Answer

The answer of The header field that can contain a...

Question 21

A(n) ____________________ is hardware or software that blocks or allows transmission of information packets based on criteria such as port, IP address, and protocol.

Accepted Answer

The answer of A(n) ____________________ is hardware or software that...

Question 22

Match each item with a statement below.&#10;a.packet&#10;b.identification header field&#10;c.router&#10;d.ICMP&#10;e.protocol header field&#10;f.firewall appliances&#10;g.stateful packet filtering&#10;h.fragmentation&#10;i.stateless packet filtering&#10;16-bit value aids in the division of the data stream into packets of information.

Accepted Answer

The answer of Match each item with a statement below.&#10;a.packet&#10;b.identification...

Question 23

Filtering by TCP or UDP port number is commonly called port filtering or ____________________ filtering.

Accepted Answer

The answer of Filtering by TCP or UDP port number...

Question 24

Match each item with a statement below.&#10;a.packet&#10;b.identification header field&#10;c.router&#10;d.ICMP&#10;e.protocol header field&#10;f.firewall appliances&#10;g.stateful packet filtering&#10;h.fragmentation&#10;i.stateless packet filtering&#10;Originally developed as a means of enabling large packets to pass through early routers that had frame size limitations.&#10;3.&#9;16-bit value aids in the division of the data stream into packets of information.

Accepted Answer

The answer of Match each item with a statement below.&#10;a.packet&#10;b.identification...

Question 25

When Web services are offered outside the firewall, ____________________ traffic is prevented from reaching the internal networks via the implementation of some form of proxy access or DMZ architecture.

Accepted Answer

The answer of When Web services are offered outside the...

Question 26

The ____ flag tells a host to immediately terminate a connection.&#10;A) RST&#10;B) ACK&#10;C) FIN&#10;D) STP

Accepted Answer

The answer of The ____ flag tells a host to...

Question 27

Match each item with a statement below.&#10;a.packet&#10;b.identification header field&#10;c.router&#10;d.ICMP&#10;e.protocol header field&#10;f.firewall appliances&#10;g.stateful packet filtering&#10;h.fragmentation&#10;i.stateless packet filtering&#10;Reviews packet header content and makes decisions on whether to allow or drop the packets based on whether a connection has actually been established between an external host and an internal one.

Accepted Answer

The answer of Match each item with a statement below.&#10;a.packet&#10;b.identification...

Question 28

Match each item with a statement below.&#10;a.packet&#10;b.identification header field&#10;c.router&#10;d.ICMP&#10;e.protocol header field&#10;f.firewall appliances&#10;g.stateful packet filtering&#10;h.fragmentation&#10;i.stateless packet filtering&#10;Identifies the IP protocol that was used in the data portion of the packet and should receive the data at its destination

Accepted Answer

The answer of Match each item with a statement below.&#10;a.packet&#10;b.identification...

Question 29

A stateless or stateful packet filter that supports active ____ must allow all traffic coming from TCP Port 20 as well as outbound traffic coming from ports above 1023.&#10;A) TCP&#10;B) ICMP&#10;C) FTP&#10;D) UDP

Accepted Answer

The answer of A stateless or stateful packet filter that...

Question 30

Match each item with a statement below.&#10;a.packet&#10;b.identification header field&#10;c.router&#10;d.ICMP&#10;e.protocol header field&#10;f.firewall appliances&#10;g.stateful packet filtering&#10;h.fragmentation&#10;i.stateless packet filtering&#10;The most common packet filter.

Accepted Answer

The answer of Match each item with a statement below.&#10;a.packet&#10;b.identification...

Question 31

It is good practice to block ____ access to all internal servers from the public networks.&#10;A) HTTP&#10;B) Telnet&#10;C) Simple Mail Transport Protocol&#10;D) DNS

Accepted Answer

The answer of It is good practice to block ____...

Question 32

The ____ is a structure for organizing Internet names associated with IP addresses.&#10;A) Domain Name System (DNS)&#10;B) Transport Control Protocol (TCP)&#10;C) Hypertext Transfer Protocol (HTTP)&#10;D) Simple Mail Transfer Protocol (SMTP)

Accepted Answer

The answer of The ____ is a structure for organizing...

Question 33

Packets requesting a connection have the ACK bit set to 0; those that are part of an ongoing connection have the ACK bit set to ____.&#10;A) -1&#10;B) 0&#10;C) 1&#10;D) 99

Accepted Answer

The answer of Packets requesting a connection have the ACK...

Question 34

A stateful filter has a ____, which is a list of current connections.&#10;A) state table&#10;B) rule base&#10;C) rule list&#10;D) state packet list

Accepted Answer

The answer of A stateful filter has a ____, which...

Question 35

The proper rule ____________________ ensures that the most resource-intensive actions are performed after the most restrictive ones, thereby reducing the number of packets that undergo intense scrutiny.

Accepted Answer

The answer of The proper rule ____________________ ensures that the...

Question 36

Match each item with a statement below.&#10;a.packet&#10;b.identification header field&#10;c.router&#10;d.ICMP&#10;e.protocol header field&#10;f.firewall appliances&#10;g.stateful packet filtering&#10;h.fragmentation&#10;i.stateless packet filtering&#10;Packets that can be easily forged and used to redirect other communications.

Accepted Answer

The answer of Match each item with a statement below.&#10;a.packet&#10;b.identification...

Question 37

Match each item with a statement below.&#10;a.packet&#10;b.identification header field&#10;c.router&#10;d.ICMP&#10;e.protocol header field&#10;f.firewall appliances&#10;g.stateful packet filtering&#10;h.fragmentation&#10;i.stateless packet filtering&#10;Consists of two parts: the header and the data.

Accepted Answer

The answer of Match each item with a statement below.&#10;a.packet&#10;b.identification...

Question 38

Match each item with a statement below.&#10;a.packet&#10;b.identification header field&#10;c.router&#10;d.ICMP&#10;e.protocol header field&#10;f.firewall appliances&#10;g.stateful packet filtering&#10;h.fragmentation&#10;i.stateless packet filtering&#10;Standalone hardware and software devices that have self-contained components.

Accepted Answer

The answer of Match each item with a statement below.&#10;a.packet&#10;b.identification...

Question 39

Match each item with a statement below.&#10;a.packet&#10;b.identification header field&#10;c.router&#10;d.ICMP&#10;e.protocol header field&#10;f.firewall appliances&#10;g.stateful packet filtering&#10;h.fragmentation&#10;i.stateless packet filtering&#10;Maintains a record of the state of a connection when filtering packets.

Accepted Answer

The answer of Match each item with a statement below.&#10;a.packet&#10;b.identification...

Question 40

A single bit of information in a TCP packet -the ____________________ flag -indicates if a packet is requesting a connection or a connection has already been established.

Accepted Answer

The answer of A single bit of information in a...

Question 41

How should a firewall process fragmentation flags?

Accepted Answer

The answer of How should a firewall process fragmentation flags?...

Question 42

What are ICMP packets?

Accepted Answer

The answer of What are ICMP packets?...

Question 43

What are some of the e-mail protocols that may be used within an organization?

Accepted Answer

The answer of What are some of the e-mail protocols...

Question 44

How does a packet filter process IP header criteria?

Accepted Answer

The answer of How does a packet filter process IP...

Question 45

Explain the process of packet filtering by TCP or UDP port number.

Accepted Answer

The answer of Explain the process of packet filtering by...

Question 46

How can a stateful packet filter determine whether a session is beginning or ending?

Accepted Answer

The answer of How can a stateful packet filter determine...

Question 47

List and describe the types of hardware devices and software programs that perform packet filtering.

Accepted Answer

The answer of List and describe the types of hardware...

Question 48

Describe how a firewall can enable Web access.

Accepted Answer

The answer of Describe how a firewall can enable Web...

Question 49

Describe best practices for testing firewall rules.

Accepted Answer

The answer of Describe best practices for testing firewall rules....

Question 50

Why might a small-scale software-only personal firewall cause problems in a network situation?

Accepted Answer

The answer of Why might a small-scale software-only personal firewall...

Deck 5: Packet Filtering