Home 
Do you have any collection of Interview Questions and interested to share with us!!
Please send that collection to iq@GlobalGuideline.Com along with the category and sub category information
Please send that collection to iq@GlobalGuideline.Com along with the category and sub category information
1 :: Define the term “DMZ” as it pertains to network security, and name three different common network devices that are typically found there?
It’s easy to think of your network as the “inside”, and everything else as “outside”. However, we’ve got a third area when it comes to firewalls - the DMZ.From an IT standpoint, the DMZ is the part of our network that is exposed to outside networks. It’s common to find the following devices in a DMZ:
• FTP server
• Email server
• E-commerce server
• DNS servers
• Web servers
2 :: Identify the true statements in below
A. Stateless packet filtering considers the TCP connection state. B. Stateful packet filtering considers the TCP connection state.C. Neither stateless nor stateful packet filtering monitor the TCP connection state.
D. Both stateless and stateful packet filtering monitor the TCP connection state, and keep a state table containing that information.
Ans: (B.) Stateful packet filtering does monitor the connection state, and that’s particularly important when it comes to preventing TCP attacks. A stateful firewall will not only monitor the state of the TCP connection, but also the sequence numbers. Stateful firewalls accomplish this by keeping a session table, or state table.
3 :: Does the Cisco IOS Firewall feature set act as a stateful or stateless packet filter?
The Cisco IOS Firewall is a stateful filter.4 :: Which of the following are considered parts of the IOS Firewall feature set?
A. IOS FirewallB. Intrusion Prevention System
C. RADIUS
D. Authentication Proxy
E. Password Encryption
Ans:(A, B, D.) There are three major components to the IOS Firewall feature set - the IOS
Firewall, the Intrusion Prevention System (IPS), and the Authentication Proxy.
5 :: Identify the true statements regarding the Authentication Proxy
A. It’s part of the IOS Firewall Feature Set.B. It allows creation of per-user security profiles, rather than more general profiles.
C. It allows creation of general security profiles, but not per-user profiles. D. Profiles can be stored locally, but not remotely.
E. Profiles can be stored on a RADIUS server.
F. Profiles can be stored on a TACACS+ server.
Ans: (A, B, E, F. T he Authentication Proxy allows us to create security profiles that will be applied on a per-user basis, rather than a per-subnet or per-address basis. These profiles can be kept
on either of the following:
• RADIUS server
• TACACS+ server
Upon successful authentication, that particular user’s security policy is downloaded from the
RADIUS or TACACS+ server and applied by the IOS Firewall router.
Webmaster Said:
Thank you.
ketul Said:
VINODSHANKARRAOBORKAR Said:
Shyam M Said:
Congrats for helping everyone.
small peace of advise, it would good if u could have a list of Question
md tajuddin Said:
I am just a beginner of ccna security,pls send me this type of questions and help me thank you.
Exams Said:
Exams Certification Said: