SNMP
Expand the letters of SNMP.
Simple Network Management Protocol
Describe what a network baseline is.
Data about the traffic of a network during what is normal.
Expand the letters of QoS
Quality of Service
In the steps of incident response, tell me what the first one is.
Preparation
Name the version of SNMP that first introduced the idea of encryption.
SNMPv3
Explain why establishing a baseline is important.
Make a starting point to monitor and measure progress
What is a method that is used to implement QoS?
Traffic shaping
What does the containment step do to fulfill its purpose?
Quarantines the threat so that it does not affect or spread to others
What is a crucial difference between SNMP v1 and SNMP v3
v3 has authentication and encryption and v1 is just plain text
When should you review a baseline? (How often)
At significant points throughout the project and changes.
What is the significance of QoS in VoIP applications?
Prioritizes voice traffic over other things to make it smooth for us
What is the eradication step all about? Describe it.
Removes any threats
What are the security features that SNMP v3 has?
Authentication to verify the identities. Encryption is also an answer and integrity.
What are the tools that are used to establish a baseline?
Traffic Monitoring Tools like network monitors and protocol analyzers.
Tell me what is different about traffic shaping and policing.
Shaping uses buffering and policing would just drop it
What is significant/important about the lessons learned step?
It helps you get preemptively remove possible near threats in the future by learning how to contain and fix and it helps fix easier and faster for next time.