WGU C172 - Network and Security Foundations - Firewalls.docx

Firewall - correct answer A part of a computer system or network designed to block unauthorized access while permitting outward communication. Stateful Inspection Firewall - correct answer The inbound and outbound data packets are compared to determine if a connection should be allowed. Proxy Server - correct answer The client gets access to the network via the ____________________________. This step is used to authenticate the user, establish the session, and set policies. Packet Filtering Firewall - correct answer Can also limit information moving from one segment to another. Packet Filtering Firewall - correct answer Explicit ports must be opened to allow incoming and outgoing traffic. Stateful Inspection Firewall - correct answer A _____________________________ type of Firewall operates at OSI Layers 3 (Network), 4 (Transport), 5 (Session). Firewall - correct answer ________________ rules are called Access Control Lists (ACLs). Application Level Firewall - correct answer The ________________________________ Firewall operates at OSI Level 7 and below. Access Control Lists (ACLs) - correct answer allow or disallow traffic based on tuples (groups of variables like Source IP, Dest IP, Port Number, time, etc) Application Level Firewall - correct answer Sometimes known as a proxy firewall. Packet Filtering Firewall - correct answer A limit is placed on the packets that can enter the network. Compares traffic against pre-established criteria. Application Level Firewall - correct answer Requires decode of the packets. Looks at actual data inside packets. Stateful Inspection Firewall - correct answer EVERY packet is analyzed, categorized and a security decision is made. Application Level Firewall - correct answer Blocks program-level traffic. Analyzes packet content. Packet Filtering Firewall - correct answer A _____________________________ type of Firewall operates at Layer 3 (the IP Layer) and Layer 4 ( the TCP and UDP port numbers) Application Level Firewall - correct answer Called application layer gateway, stateful multilayer inspection, deep packet inspection or next-gen. Stateful Inspection Firewall - correct answer Tracking the source and destination port numbers and sequence numbers as well as the source and destination IP addresses. Automatically creates rules to permit traffic based on communication type. Proxy Server - correct answer Hides your IP address. Looks at actual data inside packets. Packet Filtering Firewalls and Stateful Inspection Firewalls - correct answer The types of firewalls that look at Data Headers. Application Level Firewall - correct answer You might be able to view Twitter but not post to Twitter because the _____________________________ knows exactly what you should be allowed to do. Stateless Firewall - correct answer Does NOT keep track of traffic flows (no sessions). Needs 2 rules (one to reach destination port, another to allow traffic to come back). Traffic sent outside an active session will be stateless. Proxy Server - correct answer You make a request to the firewall then the firewall makes its own request on your behalf to the internet. Firewall - correct answer Which network device is usually placed in-line between a trusted network and an untrusted network? Proxy Server - correct answer Examines the response that it gets back for malware/danger and sends it to you if its safe. Stateful Inspection Firewall - correct answer Which type of firewall requires the most CPU? Application Level Firewall - correct answer Which type of firewall is considered most secure? Application Level Firewall - correct answer Personal firewalls, often software-based.