EC-Council 312-38 Certified Network Defender Online Training

1. Timothy works as a network administrator in a multinational organization. He decides to implement a dedicated network for sharing storage resources. He uses a_______as it seperates the storage units from the servers and the user network.

2. Management wants to bring their organization into compliance with the ISO standard for information security risk management.

Which ISO standard will management decide to implement?

3. Mark is monitoring the network traffic on his organization's network. He wants to detect a TCP and UDP ping sweep on his network.

Which type of filter will be used to detect this on the network?

4. Which of the following is a best practice for wireless network security?

5. John, the network administrator and he wants to enable the NetFlow feature in Cisco routers to collect and monitor the IP network traffic passing through the router.

Which command will John use to enable NetFlow on an interface?

6. Alex is administrating the firewall in the organization's network.

What command will he use to check all the remote addresses and ports in numerical form?

7. Blake is working on the company's updated disaster and business continuity plan. The last section of the plan covers computer and data incidence response.

Blake is outlining the level of severity for each type of incident in the plan. Unsuccessful scans and probes are at what severity level?

8. During a security awareness program, management was explaining the various reasons which create threats to network security.

Which could be a possible threat to network security?

9. Michael decides to view the-----------------to track employee actions on the organization's network.

10. Fred is a network technician working for Johnson Services, a temporary employment agency in Boston. Johnson Services has three remote offices in New England and the headquarters in Boston where Fred works.

The company relies on a number of customized applications to perform daily tasks and unfortunately these applications require users to be local administrators. Because of this, Fred's supervisor wants to implement tighter security measures in other areas to compensate for the inherent risks in making those users local admins. Fred's boss wants a solution that will be placed on all computers throughout the company and monitored by Fred. This solution will gather information on all network traffic to and from the local computers without actually affecting the traffic.

What type of solution does Fred's boss want to implement?

11. Heather has been tasked with setting up and implementing VPN tunnels to remote offices. She will most likely be implementing IPsec VPN tunnels to connect the offices.

At what layer of the OSI model does an IPsec tunnel function on?

12. Alex is administrating the firewall in the organization's network.

What command will he use to check the ports applications open?

13. The agency Jacob works for stores and transmits vast amounts of sensitive government data that cannot be compromised. Jacob has implemented Encapsulating Security Payload (ESP) to encrypt IP traffic. Jacob wants to encrypt the IP traffic by inserting the ESP header in the IP datagram before the transport layer protocol header.

What mode of ESP does Jacob need to use to encrypt the IP traffic?

14. Management decides to implement a risk management system to reduce and maintain the organization's risk at an acceptable level.

Which of the following is the correct order in the risk management phase?

15. John wants to implement a firewall service that works at the session layer of the OSI model. The firewall must also have the ability to hide the private network information.

Which type of firewall service is John thinking of implementing?

16. Frank is a network technician working for a medium-sized law firm in Memphis. Frank and two other IT employees take care of all the technical needs for the firm. The firm's partners have asked that a secure wireless network be implemented in the office so employees can move about freely without being tied to a network cable. While Frank and his colleagues are familiar with wired Ethernet technologies, 802.3, they are not familiar with how to setup wireless in a business environment.

What IEEE standard should Frank and the other IT employees follow to become familiar with wireless?

17. If a network is at risk from unskilled individuals, what type of threat is this?

18. CORRECT TEXT

Identify the minimum number of drives required to setup RAID level 5.

19. Daniel is monitoring network traffic with the help of a network monitoring tool to detect any abnormalities.

What type of network security approach is Daniel adopting?

20. James was inspecting ARP packets in his organization's network traffic with the help of Wireshark. He is checking the volume of traffic containing ARP requests as well as the source IP address from which they are originating.

Which type of attack is James analyzing?

21. Cindy is the network security administrator for her company. She just got back from a security conference in Las Vegas where they talked about all kinds of old and new security threats; many of which she did not know of. She is worried about the current security state of her company's network so she decides to start scanning the network from an external IP address. To see how some of the hosts on her network react, she sends out SYN packets to an IP range. A number of IPs responds with a SYN/ACK response. Before the connection is established, she sends RST packets to those hosts to stop the session. She has done this to see how her intrusion detection system will log the traffic.

What type of scan is Cindy attempting here?

22. A VPN Concentrator acts as a bidirectional tunnel endpoint among host machines.

What are the other f unction(s) of the device? (Select all that apply)

23. Daniel is giving training on designing and implementing a security policy in the organization. He is explaining the hierarchy of the security policy which demonstrates how policies are drafted, designed and implemented.

What is the correct hierarchy for a security policy implementation?

24. Management asked Adam to implement a system allowing employees to use the same credentials to access multiple applications. Adam should implement the-------------------------- authentication technique to satisfy the management request.

25. ------------is a group of broadband wireless communications standards for Metropolitan Area Networks (MANs)

26. Identify the network topology where each computer acts as a repeater and the data passes from one computer to the other in a single direction until it reaches the destination.

27. An attacker uses different types of password cracking techniques to crack the password and gain unauthorized access to a system. An attacker uses a file containing a list of commonly used passwords. They then upload this file into the cracking application that runs against the user accounts.

Which of the following password cracking techniques is the attacker trying?

28. Henry needs to design a backup strategy for the organization with no service level downtime.

Which backup method will he select?

29. The bank where you work has 600 windows computers and 400 Red Hat computers which primarily serve as bank teller consoles. You have created a plan and deployed all the patches to the Windows computers and you are now working on updating the Red Hat computers.

What command should you run on the network to update the Red Hat computers, download the security package, force the package installation, and update all currently installed packages?

30. Which IEEE standard does wireless network use?

31. Smith is an IT technician that has been appointed to his company's network vulnerability assessment team. He is the only IT employee on the team. The other team members include employees from Accounting, Management, Shipping, and Marketing. Smith and the team members are having their first meeting to discuss how they will proceed.

What is the first step they should do to create the network vulnerability assessment plan?

32. Assume that you are a network administrator and the company has asked you to draft an Acceptable Use Policy (AUP) for employees.

Under which category of an information security policy does AUP fall into?

33. Management wants to calculate the risk factor for their organization. Kevin, a network administrator in the organization knows how to calculate the risk factor. Certain parameters are required before calculating risk factor.

What are they? (Select all that apply) Risk factor =.............X...............X...........

34. An administrator wants to monitor and inspect large amounts of traffic and detect unauthorized attempts from inside the organization, with the help of an IDS.





They are not able to recognize the exact location to deploy the IDS sensor. Can you help him spot the location where the IDS sensor should be placed?

35. Liza was told by her network administrator that they will be implementing IPsec VPN tunnels to connect the branch locations to the main office.

What layer of the OSI model do IPsec tunnels function on?