LAN Sec Concepts
these are the three components of a AAA server
Authentication, Authorization, and Accounting.
this mitigates MAC address overflow Attacks
what is Port-security
this is the weakest layer of the OSI model
what is layer 2 (the data link layer)
this IEEE Specification is commonly used in WPANs
what is Bluetooth?
this type of IP addressing is typically used on the networked devices?
what is a private IP Address
this is a device that is designed to monitor Simple Mail Transfer Protocol (SMTP)
what is ESA
What is the default violation mode in use when port-security in Enabled
what is the Shutdown Violation Mode
what is the only type of port Portfast should be programmed to
What is an Access port
this type of wireless antenna is best suited for providing coverage in large open spaces
what is an Omnidirectional antenna
this is the first security measure the technician should apply immediately upon powering up the wireless router?
What is change the Default user-name and password of the router?
this protocol should be used to mitigate the vulnerability of using Telnet to remotely manage network devices?
What is SSH
this type of VLAN-hopping attack may be prevented by designating an unused VLAN as the native VLAN?
what is a VLAN Double-Tagging attak
this is a DHCP scope as it relates to a WLAN configured on the WLC controller?
what is the pool of IP addresses for the WLAN Clients
this protocol is used to monitor the network
what is SNMP
this is a simple way to achieve a split-the-traffic result?
what is making sure that different SSIDs are used for the 2.4 GHz and 5 GHz bands.
what is the other tag of a VLAN double tagging attack
what is the Native VLAN?
this port-securtiy option specifies that when a violation occurs, packets with unknown source addresses should be dropped and no notification should be sent.
what is Protect
Daily Double
This feature must be enabled on the company router in order for office devices to access the internet?
what is NAT
this mitigates Arp Spoofing and Arp Poisoning attacks
what is DAI (Dynamic ARP Inspection)?
this allows the router to temporarily forward data through inbound ports to a specific device.
What is Port Triggering?
This provides stateful packet inspection, application visibility and control, a next-generation intrusion prevention system (NGIPS), advanced malware protection (AMP), and URL filtering.
What is the NGFW next-gen Firewall
this command checks the source MAC address in the Ethernet header against the sender MAC address in the ARP body.
what is "ip arp inspection validate src-mac"
what service enabled by default on Cisco Routers can reveal information about it
What is CDP
these IEEE 802.11 Wireless standard operate only in the 5GHz Range
what are IEEE standards 802.11a and 802.11ac
this service can be used on a wireless router to prioritize network traffic among different types of applications
what is QoS