CCSP SelfStudy CCSP CSI: Exam Certification Guide, Second Edition [Electronic resources] نسخه متنی

b, d

b, c

c, e

e

c

c, e

b

b, c

a, b, d

b, d

b

b

b

Define IDS.

IDS is a system that monitors all inbound and outbound network activity on selected segments within a network and looks for predetermined patterns or signatures of traffic flow that may indicate a network or system attack from someone attempting to break into or compromise a system.

What protocol do Cisco Secure IDS devices use to communicate with each other?

Post Office Protocol

Traditionally, what devices provided perimeter security?

Firewalls

What are the three types of responses that a sensor can perform in reply to an attack?

TCP reset

IP blocking or shunning

IP logging

What are the perimeter security features provided by a Cisco router?

Control of TCP/IP services

Extensive ACL functionality

Network Address Translation

IPSec support

Define a perimeter.

A perimeter usually exists where a private network meets a public network. It can also be found internally in a private network where sensitive data may need to be protected from unauthorized access. However, more commonly, it is just thought of as the entry point into a network for connections that are not to be trusted.

Network sensing, attack response, and device management are functions of what device?

Cisco Secure IDS sensor

Define stateful packet filtering.

Stateful packet filtering limits information into a network based not only on the destination and source address but also on the packet data content.

Describe some of the features provided by CSA.

Host intrusion prevention

Distributed firewall capabilities

Malicious mobile code protection

Operating system integrity assurance

Audit log consolidation