312-38 Online Practice Questions and Answers

Which of the following is a Cisco product that performs VPN and firewall functions?

A. Circuit-Level Gateway

B. PIX Firewall

C. IP Packet Filtering Firewall

D. Application Level Firewall

Which of the following tool is used for passive attacks to capture network traffic?

A. Intrusion prevention system

B. Intrusion detection system

C. Sniffer

D. warchalking

E. None

Which of the following is an Internet application protocol used for transporting Usenet news articles between news servers and for reading and posting articles by end-user client applications?

A. NNTP

B. BOOTP

C. DCAP

D. NTP

Which of the following statements are NOT true about the FAT16 file system? Each correct answer represents a complete solution. Choose all that apply.

A. It does not support file-level security.

B. It works well with large disks because the cluster size increases as the disk partition size increases.

C. It supports the Linux operating system.

D. It supports file-level compression.

Your company is planning to use an uninterruptible power supply (UPS) to avoid damage from power fluctuations. As a network administrator, you need to suggest an appropriate UPS solution suitable for specific resources or conditions. Match the type of UPS with the use and advantage:

A. 1-i,2-iv,3-ii,4-v

B. 1-v,2-iii,3-i,4-ii

C. 1-ii,2-iv,3-iii,4-i

D. 1-iii,2-iv,3-v,4-iv

John is a network administrator and is monitoring his network traffic with the help of Wireshark. He suspects that someone from outside is making a TCP OS fingerprinting attempt on his organization's network. Which of following Wireshark filter(s) will he use to locate the TCP OS fingerprinting attempt? (Choose all that apply.)

A. tcp.flags=0x00

B. tcp.options.wscale_val==20

C. tcp.flags==0x2b

D. tcp.options.mss_val<1460

A network designer needs to submit a proposal for a company, which has just published a web portal for its clients on the internet. Such a server needs to be isolated from the internal network, placing itself in a DMZ. Faced with this need, the designer will present a proposal for a firewall with three interfaces, one for the internet network, another for the DMZ server farm and another for the internal network. What kind of topology will the designer propose?

A. Screened subnet

B. Multi-homed firewall

C. Bastion host

D. DMZ, External-Internal firewall

Which category of suspicious traffic signatures includes SYN flood attempts?

A. Informational

B. Denial of Service

C. Reconnaissance

D. Unauthorized access

Which type of firewall consists of three interfaces and allows further subdivision of the systems based on specific security objectives of the organization?

A. Screened subnet

B. Bastion host

C. Unscreened subnet

D. Multi-homed firewall

Fill in the blank with the appropriate word. The primary goal of risk analysis is to determine the proportion of effect and theoretical response.