Network Security

OSI Model

Switch Security

Router Security

Access List

Capitols

100

This layer deals with copper, optical fiber, and wireless media.

What is Layer 1/the physical Layer?

100

This command configures the name on the switch.

What is the "hostname" command?

100

This is a secure alternative to telnet.

What is SSH (secure shell)?

100

access-list 101 deny ip any any

What is an access-list that will block all IP traffic?

100

Washington, DC

What is the capitol city of America?

200

This layer is responsible for hierarchical addressing and routing.

What is Layer 3/The network Layer?

200

This command configures a secret password on the switch.

What is "enable secret"?

200

This is a way to make PPP more secure for WANs.

What are PAP or CHAP?

200

access-list 10 deny 10.1.10.0 0.0.0.255 access-list 10 permit any

What is an access list that will block any traffic from the 10.1.10.0 /24 network?

200

Tokyo

What is the capitol city of Japan?

300

This layer includes TCP and UDP as important protocols.

What is Layer 4/Transport Layer?

300

This command configures port security on a switch

What is "switchport port-security mac-address"?

300

This is a Layer 3 protocol that helps routers make site-to-site VPN (virtual private networks).

What is IPsec?

300

access-list 133 permit ip any any

What is an access-list that permits all ip traffic first, so does nothing?

300

London

What is the capitol city of the United Kingdom (UK)?

400

Ethernet for LANs, and HDLC, PPP, and Frame Relay for WANs, are examples of this Layer?

What is Layer 2/Data Link Layer?

400

This command can help you turn off ports fa0/2 though fa0/24 with just one no shutdown?

What is the "range" command?

400

This is the command to start making the OSPF (open shortest path first) protocol more secure.

What is "ip ospf authentication"?

400

access-list 117 deny tcp 1.0.0.0 0.255.255.255 2.0.0.0 0.255.255.255 eq 80 access-list 117 permit any any

What is an access list to block web traffic from network 1 to network 2, but allows any other traffic?

400

Rome (Roma)

What is the capitol city of Italy?

500

This is the process by which data is packaged as segments, segments as packets, packets as frames, and frames becoming bits placed on the medium.

What is encapsulation?

500

This interface allows you to configure an IP address on the switch?

What is the "interface vlan 1 (or 99)" command?

500

This command allows you to configure filtering on router ports?

What is "access-list"?

500

access-list 101 deny tcp 10.1.50.0 0.0.0.63 host 10.1.80.16 eq www access-list 101 permit ip any any

What is access-list to block any web traffic from network 10.1.50.0 /26 (255.255.255.192) to specific host with ip address 10.1.80.16?

500

Ottawa

What is capitol city of Canada?