SNMP Versions
What are the three versions of SNMP?
SNMPv1, SNMPv2, SNMPv3
Why create a baseline?
To provide a reference of network use to enable data traffic anomalies to be detected and then investigated.
Why is QoS used?
Ensures reliable and efficient transmission of critical traffic.
What is the purpose of the identification step in incident response?
To detect and report potential security incidents.
A security difference between SNMPv1-2 and SNMPv3?
SNMP version 3 supports authentication and encryption.
Which metrics is typically included in a network baseline
Network Utilization
Which of QoS technique is used to prioritize traffic based on importance?
Traffic Prioritization
What does the two 1's stand for in the 3-2-1-1 rule?
Store at least one backup copy offsite.
Ensure that at least one backup copy is stored offline.
Which Protocol does SNMP use to manage network devices?
UDP(User Datagram Protocol).
What are the benefits to regularly checking and updating a network baseline?
To ensure accurate anomaly detection and troubleshooting.
What is one of the difference between IntServ and DiffServ QoS models?
IntServ reserves resoruces per flow, DiffServ classifies and prioritize traffic.
What is the purpose of eradication?
To remove root cause of the incident and prevent reoccurrence.
What are the security concerns with SNMP?
Lack support for strong encryption.
What is the main reason to establish an initial network performance baseline?
To enable you to quantify between changes in performance and changes in your load or application.
How does MPLS architecture benefit QoS in IP network?
MLPS support by enabling traffic architecture and traffic prioritization.
Which step in incident response involves isolating affected systems to prevent future damage
Containment