Part 1 Select the best answer and provide a brief explanation (approx. 1/4 page essay) for each of the following questions: 1.Which device stores information about the paths data takes on a network? a)router b)firewall c)buffer d)ping utility 2.Sockets are a combination of the IP address and which of the following? a)NIC card manufacturer number b)default gateway c)MAC address d)port 3.One of the most common devices on a network is the switch. Which of the following defines the most important benefits of using a switch? a)access control and reduced administration b)simplified routing protocols and tables c)efficiency and security d)intrusion prevention and detection 4.IPv6, in addition to having more bits allocated for each host address, has mandatory requirements for which of the following protocols? a)L2TP b)IPS c)TFTP d)LDAP 5. Which of the following access control method models allows the owner of a resource to assign permissions to that resource? a)MAC b)Role-based Access Control (RBAC) c)DAC d)Rule-based Access Control (RBAC) Part 2 Answers should be 1 page. 1. Explain the basic technology of authentication protocols. What is the difference between authentication and authorization? Summarize how the Kerberos authentication protocol works. 2. Discuss the TCP three-way handshake. Explain how it maintains a communication session with another network host. What are the messages used? 3. Describe the different types of intrusion detection/prevention methods and their use. Which would be most beneficial in protecting a SQL server? 4. Explain the concept of a demilitarized zone (DMZ). What kind of devices would be placed inside a DMZ? Describe a bastion host. 5. Compare a VLAN (Virtual LAN) to a VPN (Virtual Private Network). How are they similar and how do they differ?
