Tia Cissp

Exam Essentials: Know the OSI model layers and which protocols are found in each.

Exam Essentials: Have a thorough knowledge of TCP/ IP

Exam Essentials: Know the different cabling types and their lengths and maximum throughput rates

Exam Essentials: Be familiar with the common LAN technologies

Exam Essentials: Understand secure network architecture and design

Exam Essentials: Understand the various types and purposes of network segmentation.

Exam Essentials: Understand the different wireless technologies.

Exam Essentials: Understand Fibre Channel

Exam Essentials: Understand FCoE

Exam Essentials: Understand iSCSI

Exam Essentials: Understand 802.11 and 802.11a, b, g, n, and ac

Exam Essentials: Understand site survey

Exam Essentials: Understand WPA2

Exam Essentials: Understand EAP

Exam Essentials: Understand PEAP

Exam Essentials: Understand LEAP

Exam Essentials: Understand MAC Filtering

Exam Essentials: Understand SSID Broadcast

Exam Essentials: Understand TKIP

Exam Essentials: Understand CCMP

Exam Essentials: Understand captive portals

Exam Essentials: Understand antenna types

Exam Essentials: Know the standard network topologies

Exam Essentials: Know the common network devices

Exam Essentials: Understand the different types of firewalls

Exam Essentials: Know the protocol services used to connect to LAN and WAN communication technologies

Written Lab: Name the layers of the OSI model and their numbers from top to bottom.

Written Lab: Name three problems with cabling and the methods to counteract those issues.

Written Lab: What are the various technologies employed by wireless devices to maximize their use of the available radio frequencies?

Written Lab: Discuss methods used to secure 802.11 wireless networking.

Written Lab: Name the LAN shared media access technologies and examples of their use, if known.

Exam Essentials: Understand the issues around remote access security management

Exam Essentials: Be familiar with the various protocols and mechanisms that may be used on LANs and WANs for data communications.

Exam Essentials: Know what tunneling is

Exam Essentials: Understand VPNs

Exam Essentials: Be able to explain NAT

Exam Essentials: Understand the difference between packet switching and circuit switching

Exam Essentials: Understand the difference between dedicated and nondedicated lines

Exam Essentials: Know various issues related to remote access security

Exam Essentials: Know the various types of WAN technologies

Exam Essentials: Understand the differences between PPP and SLIP

Exam Essentials: Understand common characteristics of security controls

Exam Essentials: Understand how email security works

Exam Essentials: Know how fax security works

Exam Essentials: Know the threats associated with PBX systems and the countermeasures to PBX fraud.

Exam Essentials: Understand the security issues related to VoIP

Exam Essentials: Recognize what a phreaker is

Exam Essentials: Understand voice communications security

Exam Essentials: Be able to explain what social engineering is

Exam Essentials: Explain the concept of security boundaries

Exam Essentials: Understand the various network attacks and countermeasures associated with communications security.

Written Lab: Describe the differences between transport mode and tunnel mode of IPsec.

Written Lab: Discuss the benefits of NAT.

Written Lab: What are the main differences between circuit switching and packet switching?

Written Lab: What are some security issues with email and options for safeguarding against them?

A _________________________________ is a data network that operates across a relatively small geographic area, such as a single building or floor. A ________ connects workstations, servers, printers, and other devices so that network resources, such as files and email, can be shared. Key characteristics: - Can connect networked resources over a small geographic area, such as a floor, a building, or a group of buildings. - Are relatively inexpensive to set up and maintain, typically consisting of readily available equipment such as servers, desktop PCs, printers, switches, hubs, bridges, repeaters, wireless access points (WAPs or simply, APs), and various security devices such as firewalls and intrusion prevention systems (IPSs). - Can be wired, wireless, or a combination of both wired and wireless. - Perform at relatively high speeds- typically 10 megabits per second (Mbps), 100 Mbps, 1000 Mbps (also referred to as 1 gigabit per second [1 Gbps]), 10 Gbps, and 40 Gbps for wired networks, and 11 Mbps, 54 Mbps, or 600 Mbps for wireless networks. *Hint: Same term for all blanks

DUMMIES WARNING: Flip the card!!

The Dummies book wants you to remember this! FLIP THE CARD!

A ___________________________ connects multiple LANs and other WANs by using telecommunications devices and facilities to form an internetwork. Key characteristics of WANs include the following: - Connect multiple LANs over large geographic areas, such as a small city (for example, a metropolitan area network ([for MAN]), a region or country, a global corporate network, the entire planet (for example, the Internet), or beyond (for example, the International Space Station via satellite). - Can relatively expensive to set up and maintain, typically consisting of equipment such as routers, Channel Service Unit/ Data Service Unit (CSU/ DSU) devices, firewalls, virtual private network (VPN) concentrators, and various other security devices. - Perform at relatively low speeds by using various technologies, such as dial-up (56 kilobits per second [Kbps]); digital subscriber line, or DSL (approximately 45 Mbps); OC-12 (approximately 622 Mbps); and OC-255 (approximately 13 Gbps).

List some examples of WANs:

The Dummies book wants you to remember this! FLIP THE CARD!

The OSI & TCP/IP models define standard protocols for network communication and interoperability by using a layered approach. This approach divides complex networking issues into simpler functional components that help the understanding, design, and development of networking solutions and provides the following specific advantages: (?)

Connects an individual's electronic devices to each other or to a larger network, such as the Internet and the Internet of Things (IoT). Examples of devices that might be connected via a PAN include laptop computers, smartphones, tablets, wearable technology, virtual personal assistants (such as Amazon Alexa, Apple Siri, Google Assistant, and Microsoft Cortana) home appliance, smart thermostats, and home security cameras. These devices can be connected via wired technologies such as USB and FireWire, or wireless technologies such as Wi-Fi, Bluetooth, IrDA (Infrared Data Associate), 6LoWPAN (IPv6 over Lower power Wireless Personal Area Networks), Bluetooth Low-Energy (BLE, also known as Bluetooth Smart of Bluetooth 4.0+), Bluetooth Mesh, Threat, ZigBee, and Open Connectivity Foundation (OCF). A wireless PAN is also sometimes referred to as a WPAN.

Connects servers to a separate physical storage device (typically a disk array). The server operating system sees the storage as if it were directly attached to the server, SANs typically comprise several terabytes or more of disk storage and incorporate highly sophisticated design architectures for fault tolerance and redundancy. Communications protocols used in SANs typically include SCSI (Small Computer System Interface, pronounced "Scuzzy"), iSCI (IP-based SCSI), Fibre Channel Protocol (FCP, SCSI over Fibre Channel), and FCoE (Fibre Channel over Ethernet). SANs are highly scalable, enable technologies such as virtualization and snapshots, provide flexibility in server deployment options, facilitate disaster recovery (for example, with real-time replication), and tried to reduce the overall cost of data storage.

Implemented on network switches in a LAN as a way of logically grouping users and resources in a broadcast domain. Often, such VLANs correlate to department functions (such as Accounting, Sales, and Research & Development) and/ or IP subnets. VLANs provide scalability, segmentation, and (some) security at Layer 2 and can also work to limit the size of your Ethernet broadcast domains. VLANs are implemented by using Institute of Electrical and Electronics Engineers (IEEE) 802.1q tagging to tag Ethernet frames with VLAN information. Note: the IEEE is an international organization that defines many standards, including numerous 802 networking standards.

Also known as Wi-Fi network. A wireless LAN that uses wireless access points (WAPs, or simply APs) to connect wireless-enabled devices to a wired LAN.

A wireless network that typically uses mobile cellular technologies such as 4G Long-Term Evolution (LTE), Global System for Mobile Communications (GSM), Universal Mobile Telecommunications System (UMTS), or Code Division Multiple Access (CDMA2000), to extend wireless network coverage regionally, nationally, and/ or globally.

Connects multiple buildings across a high-performance backbone.

Extends across a large area, such as a small city.

A type of extranet that allows businesses within an industry to share information or integrate shared processes. For example, Electronic Data Interchange (EDI) allows organizations to exchange structured documented- such as order forms, purchase orders, bills of lading, and invoices- over a secure network.

In 1984, the International Organization for Standardization (ISO) adopted the ____________________________________ to facilitate interoperability between network devices independent of the manufacturer. - consists of 7 distinct layers that describe how data is communicated between systems and applications on a computer network

List the layers (in order from Layer 7 to Layer 1) of the OSI model:

Dummies Tip - Flip the card!

Each layer communicates only with the layer immediately above and below it (adjacent layers). This communication is achieved through a process known as _______________________________. ___________________________ wraps protocol information from the layer immediately above in the data section of the layer immediately from the layer immediately above in the data section of the layer immediately below.

The _______________________________ is the highest layer of the OSI model. It supports the components that deal with the communication aspects of an application that requires network access, and it provides an interface to the user. So, both the _________________ layer and the end-user itneract directly with the application. This layer is responsible for: - Identifying and establishing availability of communication partners - Determining resource availability - Synchronizing communication

The Dummies book wants you to remember this! FLIP THE CARD!

What is the Application Layer responsible for?

Applications that function at the Application Layer include:

A program used to copy files from one system to another over a network. ________ operates on TCP ports 20 (the data port) and 21 (the control port).

The language of the World Wide Web (WWW), used by web servers and browsers for non-sensitive content. ______ operates on TCP port 80.

The language of commercial transactions on the World Wide Web (WWW). ________________ is actually the HTTP protocol used in combination with SSL/ TLS. _________ operates on TCP port 443, but occasionally on other ports such as 8443. *Hint: same term for all blanks

A store-and-forward electronic mail protocol that allows an email client to access, manage, and synchronize email on a remote mail server. ___________ provides more functionality and security than POP3, such as requiring users to explicitly delete emails from the server. The most current version is IMAPv4 (or IMAP4), which operates on TCP and UDP port 143. Email clients that use ___________ can be secured by using TLS or SSL encryption over TCP/ UDP port 993.

An email retrieval protocol that allows and email client to access email on a remote mail server by using TCP port 110. Inherently insecure, ________ allows users to authenticate over the Internet by using plaintext passwords. Email clients that use POP3 can be secured by using TLS or SSL encryption over TCP/ UDP port 995.

______________ is an IETF (Internet Engineering Task Force) standard for providing email confidentiality and authentication. ________ is not widely used. *Hint: term is the same for all blanks

______________ is an Internet protocol that provides a method for secure communications with a web server. ___________ is a connectionless-oriented protocol that encapsulates data after security properties for the session have been successfully negotiated. *Hint: term is the same for all blanks

DUMMIES WARNING: Flip the card!!

___________ is a secure method of sending email incorporated into several popular browsers and email applications.

Used to send a receive email across the Internet. This protocol has several-well known vulnerabilities that make it inherently insecure. _________ operates on TCP/ UDP port 25. ________ over SSL/ TLS (SMTPS) uses TCP/ UDP port 465. *Hint: term is the same for all blanks

Used to collect network information by polling stations and sending traps (or alerts0 to a management station. __________ has many well-known vulnerabilities, including default cleartext community strings (passwords). ______ operates on TCP/UDP ports 161 (agent) and 162 (manager). Secure ______ uses TCP/UDP ports 10161 (agent) and 10162 (manager). *Hint: term is the same for all blanks

Provides terminal emulation for remote access to system resources. ______________ operates on TCP/UDP port 23. Because ___________ transmits passwords in cleartext, it is no longer considered safe; instead SSH is preferred. *Hint: term is the same for all blanks

A lean, mean version of FTP without directory-browsing capabilities or user authentication. Generally considered less secure than FTP, _____________ operates on UDP port 69.

The ______________________________________ provides coding and conversion functions that are applied to data being presented to the Application Layer (Layer 7). These functions ensure that data sent from the Application Layer of one system are compatible with the Application Layer of receiving system.

The Dummies book wants you to remember this! FLIP THE CARD!

What is the Presentation Layer responsible for?

What are the tasks associated with the Presentation Layer?

What are some examples of the Presentation Layer?

a character-encoding scheme based on the English alphabet, consisting of 128 characters

an 8-bit character-encoding scheme largely used on mainframe and mid-range computers

a widely used bitmap image format that allows up to 256 colors and is suitable for images or logos (but not photographs)

a photographic compression method widely used to store and transmit photographs

an audio and video compression method widely used to store and transmit audio and video files

The ____________________________ establishes, coordinates, and terminates communication sessions (service requests and service responses) between networked system.

The Dummies book wants you to remember this! FLIP THE CARD!

What is the Session Layer responsible for?

A communication session is divided into what three distinct phases?

Initial contact between communicating systems is made, and the end devices agree on communications parameters and protocols to be used including the mode of operation (Simplex mode, Half-duplex mode, Full-duplex mode).

In __________________ mode, a one-way communications path is established with a transmitter at one end of the connection and a receiver at the other end. An analogy is AM radio, where a radio station broadcasts music and the radio receiver can only receive the broadcast.

In ____________________ mode, both communicating devices are capable of transmitting and receiving messages, but they can't do it at the same time. An analogy is a two-way radio in which a button must be pressed to transmit and then released to receive a signal.

In ___________________ mode, both communicating devices are capable of transmitting and receiving simultaneously. An analogy is a telephone with which you can transmit and receive signals (but not necessarily communicate) at the same time.

information is exchanged between end devices

after data transfer is completed, end devices systematically end the session

What are some examples of protocols in a Session Layer?

__________________________________________ is a Microsoft protocol that allows applications to communicate over a LAN. When ______________ is combined with other protocols such as TCP/IP, known as _________ over TCP/IP (or NBT), applications can communicate over large networks. *Hint: same term for all the blanks

developed by Sun Microsystems to facilitate transparent user access to remote resources on a UNIX-based TCP/IP network

A client-server network redirection tool. Procedures are created on clients and performed on servers.

__________ is a secure client-server protocol that's defined at multiple upper layers of the OSI model. RPC is used to request services from another computer on the network. ___________ provides public and private keys to clients and servers by using Diffie-Hellman. After ______ operations initially authenticate, they're transparent to the end-user. *Hint: same term for all the blanks

________ provides a secure alternative to Telnet for remote access. _____ establishes and encrypted tunnel between the client and the server, and can also authenticate the client to the server. ____________ can be used to protect the confidentiality and integrity of network communications. __________-2 establishes an encrypted tunnel between the ______ client and ________ server and can also authenticate the client to the server. _________ version 1 is also widely used but has inherent vulnerabilities that are easily exploited. *Same term/ acronym for all the blanks (one of the blanks is modified so that it is the correct term).

The Dummies book wants you to remember this! FLIP THE CARD!

an open signaling protocol standard for establishing, managing and terminating real-time communications- such as voice, video, and text- over large IP-based networks

The ______________________________________ provides transparent, reliable data transport and end-to-end transmission control. - Hides the details of the lower layer functions from the upper layers.

What are the specific transport layer functions include?

manages data transmission between devices, ensuring that the transmitting device doesn't send more data than the receiving device can process

enables data from multiple applications to be transmitted over a single physical link

establishes, maintains, and terminates virtual circuits

implements various mechanisms for detecting transmission errors and taking action to resolve any errors that occur, such as requesting that data be retransmitted

The Dummies book wants you to remember this! FLIP THE CARD!

What is the Transport Layer responsible for?

List several important protocols defined at the Transport Layer:

A full-duplex (capable of simultaneous transmission and reception), connection-oriented protocol that provides reliable delivery of packets across a network. A connection-oriented protocol requires a direct connection between two communicating devices before any data transfer occurs. In ______, this connection is accomplished via a three-way handshake. The receiving device acknowledges packets, and packets are retransmitted if an error occurs. The following characteristics and features are associated with TCP: Connection-oriented; Reliable; Slow A three-way handshake is the method used to establish a __________ connection. A PC attempting to establish a connection with a server initiates the connection by sending a TCP SYN (Synchronize) packet. This is the first part of the handshake. In the second part of the handshake, the server replies to the PC with a SYN ACK packet (Synchronize Acknowledgement). Finally, the PC completes the handshake by sending an ACK or SYN-ACK-ACK packet, acknowledging the server's acknowledgement, and the data communications comment. A socket is a logical endpoint on a system or device used to communicate over a network to another system or device (or even on the same device). A socket usually is expressed as an IP address and port number, such as 192.168.100.2:25. *Hint: same term/ acronym for all the blanks

Explain a three-way handshake:

A ______________ is a logical endpoint on a system or device used to communicate over a network to another system or device (or even on the same device). A __________________ usually is expressed as an IP address and port number, such as 192.168.100.2:25. *Hint: same term for all the blanks

DUMMIES TECHNICAL NOTE - flip the card!!

DUMMIES TECHNICAL NOTE - flip the card!!

DUMMIES TECHNICAL NOTE - flip the card!!

DUMMIES TECHNICAL NOTE - flip the card!!

A connectionless protocol that provides fast best-effort delivery of datagrams across a network. A connectionless protocol doesn't guarantee delivery of transmitted packets (datagrams) and is thus considered unreliable. It doesn't: - Attempt to establish a connection with the destination network prior to transmitting data. - Acknowledge received datagrams. - Perform re-sequencing. - Perform error checking or recovery. - A datagram is a self-contained unit of data that is capable of being routed between a source and a destination. Similar to a packet, which is used in the Internet Protocol (IP), datagrams are commonly used in UDP and other protocols. The term Protocol Data Unit (PDU) is used to describe the unit of data used at a particular layer of a protocol. For instance, in OSI, the layer 1 PDU is a bit, layer's 2 PDU is a frame, layer's 3's is a packet, and layer 4's is a segment of datagram, and layer 7's PDU. __________ is ideally suited for data that requires fast delivery, as long as that data isn't sensitive to packet loss and doesn't need to be fragmented. Examples of applications that use _________ include Domain Name System (DNS), Simple Network Management Protocol (SNMP), and streaming audio or video. The following characteristics and features are associated with _________: - Connectionless: Doesn't pre-establish a communication circuit with the destination network. - Best effort: Doesn't guarantee delivery and is thus considered unreliable. - Fast: Has no overhead associated with circuit establishment, acknowledgement, sequencing, or error-checking and recovery. Jitter in streaming audio and video is caused by variations in the delay of received packets, which is a negative characteristic of _________. *Hint: same term for all the blanks

The term Protocol Data Unit (PDU) is used to describe the unit of data used at a particular layer of a protocol. For instance, in OSI, the layer 1 PDU is a- (?)

The term Protocol Data Unit (PDU) is used to describe the unit of data used at a particular layer of a protocol. For instance, in OSI, layer's 2 PDU is a- (?)

The term Protocol Data Unit (PDU) is used to describe the unit of data used at a particular layer of a protocol. For instance, in OSI, layer's 3's is a- (?)

The term Protocol Data Unit (PDU) is used to describe the unit of data used at a particular layer of a protocol. For instance, in OSI, layer 4's is a- (?)

The term Protocol Data Unit (PDU) is used to describe the unit of data used at a particular layer of a protocol. For instance, in OSI, layer 7's is?

A _____________________ is a self-contained unit of data that is capable of being routed between a source and a destination. Similar to a packet, which is used in the Internet Protocol (IP), _______________ are commonly used in UDP and other protocols. *Hint: same term for both blanks

The protocol used to guarantee data delivery in older Novell NetWare IPX/SPX networks. SPX sequences transmitted packets, reassembles received packets, confirms all packets are received, and requests retransmission of packets that aren't received. SPX is to IPX as TCP is to IP, though it might be confusing because the order is stated as IPX/SPX, rather SPX/IPX (as in TCP/IP): SPX and TCP are Layer 4 protocols, and IPX and IP are Layer 3 protocols. Just think of it as yang and yin, rather than yin and yang!

Connection-Oriented and Connectionless-Oriented Protocols examples:

This protocol provides session-based encryption and authentication for secure communication between clients and servers on the Internet. This protocol provides server authentication with optional client authentication.

A message-oriented protocol (similar to UDP) that ensures reliable, in-sequence transport with congestion control (similar to TCP). Also provides multi-homing and redundant paths for resiliency and reliability.

The ______________________________________ provides routing and related functions that enable data to be transported between systems on the same network or on interconnected networks (or internetworks).

Fill in the blanks: ____________________________ protocols move _____________________ protocol messages across a network.

Routing protocols include: (?)

Routed protocols include: (?)

_____________________________________ are defined at the Network Layer and specify how routers communicate with one another on a WAN. These protocols are classified as static or dynamic.

_________________ routing is a type of network routing technique. _________________ routing is not a routing protocol; instead, it is the manual configuration and selection of a network route, usually managed by the network administrator. It is employed in scenarios where the network parameters and environment are expected to remain constant. _________________ routing is only optimal in a few situations. Network degradation, latency and congestion are inevitable consequences of the non-flexible nature of _________________ routing because there is no adjustment when the primary route is unavailable. *Hint: Same term for all the blanks

Routing is one of the most essential procedures in data communication. It ensures that data travels from one network to another with optimal speed and minimal delay, and that its integrity is maintained in the process. Broadly, routing is performed in two different ways:

A _________________________ routing protocol can discover routes and determine the best route to a given destination at any given time. The routing table is periodically updated with current routing information. The protocols are further classified as link-state and distance-vector (for intra domain routing) and path-vector (for inter-domain routing) protocols.

A _____________________________ protocol makes routing decisions based on two factors: 1. the distance (hop count or other metric) 2. vector (the egress router interface) It periodically informs its peers and/or neighbors of topology changes. Convergence, the time it takes for all routers in a network to update their routing tables with the most current information (such a link status changes), can be a significant problem for __________________________ protocols. Without convergence, some routers in a network may be unaware of topology changes, causing the router to send traffic to an between routers, and the network slows down considerably. *Hint: same term for both blanks

____________________________________ is a distance-vector routing protocol that uses hop count as its routing metric. In order to prevent routing loops, in which packets effectively get stuck bouncing between various router nodes, _________ implements a hop limit of 15, which significantly limits the size of networks that ________ can support. After a data packet crosses 15 routers nodes (hops) between a source and a destination, the destination is considered unreachable. In addition to hop limits, ________ employs three other mechanisms to prevent routing loops: - Split horizon - Route poisoning - Holddown timers _______ uses UDP port 520 as its transport protocol and port, and thus is a connectionless-oriented protocol. Other disadvantages of ______ include slow convergence and insufficient security (________v1 has no authentication, and _______v2 transmits passwords in cleartext). ______ is a legacy protocol, but it's still in widespread use on networks today, despite its limitations, because of its simplicity. *Hint: same term/ acronym for all the blanks

prevents a router from advertising a route back out through the same interface from which the route was learned

sets the hop count on a ad route to 16, effectively advertising the route as unreachable if it takes more than 15 hops to reach

Cause a router to start a timer when the router first receives information that a destination is unreachable. Subsequent updates about that destination will not be accepted until the timer expires. This also helps avoid problems associated with flapping. Flapping occurs when a route (or interface) repeatedly changes state (up, down, up, down) over a short period of time.

DUMMIES TECHNICAL STUFF: ______________ generally refers to the number of router nodes that a packet must pass through to reach its destination.

A ___________________ protocol requires every router to calculate and maintain a complete map, or routing table, of the entire network. Routers that use this protocol periodically transmit updates that contain information about adjacent connections (these are called link states) to all other routers in the network. __________ protocols are computation-intensive but can calculate the most efficient route to a destination, taking into account numerous factors such as link speed, delay, load, reliability, and cost (an arbitrarily assigned weight or metric). Convergence occurs very rapidly (within seconds) with __________ protocols; distance vector protocols usually take longer (several minutes, or even hours in very large networks). Two examples of ________ protocols are: - Open Shortest Path First (OSPF) - Intermediate System to Intermediate System (IS-IS) *Hint: same term/ acronym for all the blanks

____________________________ is a link-state routing protocol widely used in large enterprise networks. It's considered an Interior Gateway Protocol (IGP) because it performs routing within a single autonomous system (AS). ________ is encapsulated directly into IP datagrams, as opposed to using a Transport Layer protocol such as TCP or UDP. __________ networks are divide3d into areas identified by 32-birt are identifiers. Area identifiers can (but don't have to) correspond to network IP addresses and can duplicate IP addresses without conflicts. Special _________ areas include the backbone area (also known as area 0), stub area, and not-so-stubby area (NSSA). *Hint: same term/ acronym for all the blanks

_____________ is a link-state routing protocol used to route datagrams through a packet-switched network. It is an interior gateway protocol used for routing within an autonomous system, used extensively in large service-provider backbone networks.

DUMMIES TECHNICAL: An ___________________________ is a group of contiguous IP address rages under the control of a single Internet entity. Individual autonomous systems are assigned a 16-bit or 32-bit AS Number (ASN) that uniquely identifies the network on the Internet. ASNs are assigned by the Internet Assigned Numbers Authority (IANA).

A _________________ protocol is similar in concept to a distance-vector protocol, but without the scalability issues associated with limited hop counts. Example: Border Gateway Protocol (BGP)

_______________ is a path-vector routing protocol used between separate autonomous systems (ASs). It's considered an Exterior Gateway Protocol (EGP) because it performs routing between separate autonomous systems. It's the core protocol used by Internet service providers (ISPs), network service providers (NSPs), and on very large private IP networks. When _________ runs between autonomous systems (such as between ISPs), it's called external _________ (e_________). When __________ runs within an AS (such as on a private IP network), it's called internal _________ (i__________). *Hint: same term/ acronym for all the blanks

______________ protocols are Network Layer protocols, such as Internetwork Packet Exchange (IPX) and Internet Protocol (IP) which address packets with routing information and allow those packets to be transported across networks using routing protocols.

_____________________________________ is a connectionless protocol used in primarily in older Novell NetWare networks for routing packets across the network. It's part of the IPX/ SPX (Internetwork Packet Exchange/ Sequenced Packet Exchange) protocol suite, which is analogous to the TCP/IP suite.

_________________________________ contains addressing information that enables packets to be routed. _________ is part of the TCP/IP (Transmission Control Protocol/ Internet Protocol) suite, which is the language of the Internet. _____ has two primary responsibilities: - Connectionless, best-effort (no guarantee of) delivery of datagrams. - Fragmentation and reassembly of datagrams.

_______________________________________, which is currently the most commonly used version, uses a 32-bit logical IP address that's divided into four 8-bit sections (octets) and consists of two main parts: - the network number - the host number

DUMMIES TECHNICAL: The address range 127.0.0.1 to 127.255.255.255 is a _______________________ network used for testing and troubleshooting. Packets sent to a 127 address are immediately routed to the source device. The most commonly used _______________ (or localhost) address for devices is 127.0.0.1 (sometimes called home), although any address in the 127 network range can be used for this purpose.

DUMMIES TECHNICAL NOTE- Flip the card to read!!

The latest generation of the IP protocol. IPv___ greatly increased the number of unique IP addresses that computers and devices connected to the Internet can be assigned. For all practical purposes, the quantity of addresses is unlimited. The IPv___ specification was completed in 1997 by the Internet Engineering Task Force (IETF) and first deployed in 2004 when ICANN added IPv____ records to its DNS root servers for Japan and Korea. IPv____ is backward compatible with IPv4 and was designed to fix its shortcomings, such as data security and maximum number of addresses. Virtually Unlimited Devices The address space was increased from 32 bits in IPv4 to 128 bits in IPv____ (see binary values). IPv____ also supports quality of service (QoS) parameters for real-time audio and video. Originally called "IP Next Generation" (IPng), IPv6 and IPv4 exist side-by-side. See NDP and SLAAC.

There are several rules the IETF has defined to shorten an IPv6 address: (?)

Dummies Tip - Flip the Card!!

Dummies Tip - Flip the Card!!

__________________ protocols are groups of protocols that are purpose-built for some type of specialized communications need. ____________________ protocols have their own schemes for encapsulation, just like TCP/IP itself. One good example of this protocol is DNP3 (Distributed Network Protocol), which is used in industrial control systems (ICS) and supervisory control and data acquisition (SCADA) networks. DNP3 has a layer 2 framing layer, a layer 4 transport layer, and a layer 7 application layer. DNP3's original design lacks security features, such as authentication and encryption. Recent updates to the standard have introduced security protocols. Without security features, relatively simple attacks (such as eavesdropping, spoofing, and perhaps denial of service) can be easily carried out on specialized multiprotocol networks.

___________________________ protocols refers to an implementation of two or more protocols for a specific communications purpose. Some examples of these protocols include: - MPLS (Multiprotocol Label Switching) - FCoE (Fibre Channel over Ethernet) - VoIP (Voice over Internet Protocol) - SIP (Session Initiation Protocol) - iSCSI (Internet Small Computer Systems Interface)

_______________________________________, represent the ability to create, configure, manage, secure, and monitor network elements rapidly and efficiently. ______ utilizes an open standards architecture that enables intelligent network functions, such as routing, switching, and load balancing (the overlay function), to be performed on virtual software that is installed on commodity network hardware (the physical underlay), similar to server virtualization. In ________, network elements and network architectures are virtual; this enables organizations to quickly build and modify their networks and network elements. Like other virtualization technologies, _________ requires policy, process, and discipline to manage it correctly, in order to avoid network sprawl (the phenomenon where undisciplined administrators bypass change controls processes and unilaterally create virtual network elements). *Hint: same term/ acronym for all the blanks

Other protocols defined at the Network Layer include the: (?)

_________________ is a Network Layer protocol that is used for network control and diagnostics. Commonly used __________ commands include ping and traceroute. Although __________ is very helpful in troubleshooting routing and connectivity issues in a network, it is also commonly used by attackers for network reconnaissance, device discovery, and denial-of-service (DoS) attacks (such as an ___________ flood). *Hint: same term/ acronym for all the blanks

_______________________ is a Network Layer key management protocol used to share encryption keys. An advantage of __________ is that it doesn't require a prior communication session to be established before it sends encrypted keys or packets. However, ____________ is bandwidth-intensive because of the size of additional header information in encrypted packets.

The primary networking equipment defined at Layer 3 are ____________ and ___________________.

________________________ are intelligent devices that link dissimilar networks ad use logical or physical addresses to forward data packets only to the destination network (or along the network path). The devices employ various routing algorithms (for example, RIP, OSPF, and BGP) to determine the best path to a destination, based on different variables that include bandwidth, cost, delay, and distance.

____________________________ are created with software running on a computer (workstation or server) or router. _____________________ link dissimilar programs and protocols by examining the entire Layer 7 data packet so as to translate incompatibilities. For example, a ________________ can be used to link an IP network to an IPX network or a Microsoft Exchange mail server to a Lotus Notes server (a mail _____________________).

The ______________________ ensures that messages are delivered to the proper device across a physical network link. This layer also defines the networking protocol (for example, Ethernet, USB, and token ring) used to send and receive data between inidividual devices. The ___________________________ formats messages from layers above into frames for transmission, handles point-to-point synchronization and error control, and can perform link encryption.

The IEEE 802 standards and protocols further divide the Data Link Layer into two sub-layers: the ________________________ and ______________________ sublayers.

The Dummies book wants you to remember this! FLIP THE CARD!

The LLC sublayer operates between the Network Layer above and the MAC sublayer below. The LLC sublayer performs the following three functions:

The Dummies book wants you to remember this! FLIP THE CARD!

The MAC sublayer operates between the LLC sublayer above the Physical Layer below. It's primarily responsible for framing and has the following three functions: (?)

In _____________________-based networks such as Ethernet, individual devices must vie for control of the physical network medium. This type of network is ideally suited for networks characterized by small bursts of traffic. Ethernet networks use a ____________________-based method, known as Carrier Sense Multiple Access with Collision Detection (CSMA/CD), in which all stations listen for traffic on the physical network medium. If the line is clear, any station can transmit data. However, fi another station attempts to transmit data at the same time, a collision occurs, the traffic is dropped, and both stations must wait a random period of time before attempting to re-transmit. Another method, used in Apple LocalTalk and Wi-Fi networks, is known as Carrier Sense Multiple Access with Collision Avoidance (CSMA/CA).

In ________________________ networks such as token ring and Fiber Distributed Data Interface (FDDI), individual devices must wait for a special frame, known as a token, before they transmit data across the physical network medium. This type of network is considered deterministic (transmission delay can be reliably calculated, and collisions don't occur) and is ideally suited for networks that have large, bandwidth-consuming applications that are delay-sensitive. ______________, FDDI, and ARCnet networks all use various token passing methods for media access control.

In __________________ networks, individual devices (secondary hots) are polled by a primary host to see whether they have data to be transmitted. Secondary hosts can't transmit until permission is granted by the primary host. _____________________ is typically used in mainframe environments and wireless networks.

Common LAN protocols are defined at the Data Link (and Physical) Layer. They include the following: (?)

The _________________________ protocol transports data to the physical LAN medium by using CSMA/CD (discussed in preceding section). It is designed for networks characterized by sporadic, sometimes heavy traffic requirements. ______________________ is by far the most common LAN protocol used today- most often implemented with twisted-pair cabling (discussed in the section "Cable and connector types"). _____________ operates at speeds up to 10 Mbps, Fast _________________ operates at speeds to 100 Mbps (over Cat 5 twisted-pair or fiber-optic cabling), and Gigabit _________________ operates at speeds up to 40 Gbps (over Cat 5e, Cat 6, or Cat 7 twisted-pair or fiber-optic cabling). *Hint: same term/ acronym for all the blanks

The ___________________ protocol is one of the earliest LAN technologies developed. It transports data to the physical LAN medium by using the token passing media access method that we discuss in the preceding section. It's implemented in a star topology by using coaxial cable. _____________________ provides slow-but-predictable network performance. *Hint: same term/ acronym for all the blanks

The _________________________________ protocol transports data to the physical LAN medium by using the token passing media access method that we discuss in the preceding section. In a ________________________ network, all nodes are attached to a Multistation Access Unit (MAU) in a logical ring (but physical star) topology. One node of the token ring network is designated as the active monitor and ensures that no more than one token is on the network at any given time. (Variations permit more than one token on the network.) If the token is lost, the active monitor is responsible for ensuring that a replacement token is generated. ___________________ networks operate at speeds of 4 and 16 Mbps- pretty slow by today's standards. ______________________ networks are not often seen nowadays. *Hint: same term/ acronym for all the blanks

The ______________ protocol transports data to the physical LAN medium by using the token passing media access method that we discuss in the preceding section. It's implemented as a dual counter-rotating ring over fiber-optic cabling at speeds up to 100 Mbps. All stations on a FDDI network are connected to both rings. During normal operation, only one ring is active. In the event of a network break or fault, the ring wraps back through the nearest node on the second ring. *Hint: same term/ acronym for all the blanks

_____________ maps Network Layer IP addresses to MAC addresses. _____________ discovers physical addresses of attached devices by broadcasting ___________ query messages on the network segment. IP-address-to-MAC-address translations are then maintained in a dynamic table that's cached on the system. *Hint: same term/ acronym for all the blanks

_____________ maps MAC addresses to IP addresses. This process is necessary when a system, such as a diskless machine, needs to discover its IP address. The system broadcasts a __________ message that provides the system's MAC address and requests to be informed of its IP address. A __________ server replies with the requested information. *Hint: same term/ acronym for all the blanks

The Dummies book wants you to remember this! FLIP THE CARD!

LAN data transmissions are classified as: (?)

The Dummies book wants you to remember this! FLIP THE CARD!

_______________________________ technologies, commonly known as Wi-Fi, function at the lower layers of the OSI Reference Model. WLAN protocols define how frames are transmitted over the air.

Wireless LAN Standards: 802.11a- what is the speed? describe it?

Wireless LAN Standards: 802.11b- what is the speed? describe it?

Wireless LAN Standards: 802.11g- what is the speed? describe it?

Wireless LAN Standards: 802.11n- what is the speed? describe it?

Wireless LAN Standards: 802.11ac- what is the speed? describe it?

TRUE/ FALSE: WLAN networks were first encrypted with the WEP (Wired Equivalent Privacy) protocol, which was soon proven to be insufficient. New standards of encryption include WPA (Wi-Fi protected access) and WPA2. WPA using TKIP (Temporal Key Integrity Protocol) is also considered insufficient; AES (Advanced Encryption Standard) should be used instead.

WAN technologies functions at the lower three layers of the OSI Reference Model (the Physical, Data Link, and Network Layers), primarily at the Data Link Layer. WAN protocols define how frames are carried across a single data link between two devices. These protocols include: (?)

These links provide a single, pre-established WAN communications path from the customer's network, across a carrier network (such as Public Switched Telephone Network [PSTN]), to a remote network. These ________________ links include: - Layer 2 Forwarding Protocol (L2F) - Layer 2 Tunneling Protocol (L2TP) - Point-to-Point (PPP) - Point-to-Point Tunneling Protocol (PPTP) - Serial Line IP (SLIP)

A tunneling (data encapsulation) protocol developed by Cisco and used to implement VPNs, specifically Point-to-Point Protocol (PPP) traffic. ___________ provides encapsulation but doesn't provide encryption or confidentiality.

A tunneling protocol used to implement VPNs. _____________ is derived from L2F (described in the preceding item) and PPTP and uses UDP port 1701 to create a tunneling session. _____________ is commonly implemented along with an encryption protocol, such as IPsec, because it doesn't encrypt traffic or provide confidentiality by itself.

The successor to SLIP, ________ provides router-to-router and host-to-network connections over synchronous and asynchronous circuits. It's a more robust protocol than SLIP and provides additional built-in security mechanisms. ________________ is far more common than SLIP in modern networking environments.

A tunneling protocol developed by Microsoft and commonly used to implement VPNs, specifically PPP traffic. _____________ doesn't provide encryption or confidentiality, instead relying on other protocols, such as PAP, CHAP, and EAP, for security.

The predecessor of Point-to-Point Protocol (PPP), ___________ was originally developed to support TCP/IP networking over low-speed asynchronous serial lines (such as dial-up modems) for Berkeley UNIX computers. _____________ is rarely seen today, except in computer museums.

In a _______________________, a dedicated physical circuit path is established, maintained, and terminated between the sender and receiver across a carrier network for each communications session (the call). This network type is used extensively in telephone company networks and functions similarly to a regular telephone call. Examples include: Digital Subscriber Line (xDSL), Data Over Cable Service Interface Specification (DOCSIS) and Integrated Services Digital Network (ISDN).

________ uses existing analog phone lines to deliver high-bandwidth connectivity to remote customer.

__________________ is a communications protocol for transmitting high speed data over an existing cable TV system.

___________________ is a communications protocol that operates over analog phone lines that have been converted to use digital signaling. __________ lines are capable of transmitting both voice and data traffic. ___________ defines a B-channel for data, voice, and other services, and a D-channel for control and signaling information. With the introduction and widespread adoption of DSL and DOCSIS, ISDN has largely fallen out of favor in the United States and is no longer available in many areas. *Hint: same term/ acronym for all the blanks

The Dummies book wants you to remember this! FLIP THE CARD!

In a ___________________________ network, devices share bandwidth (by using statistical multiplexing) on communications links to transport packets between a sender and receiver across a carrier network. This type of network is more resilient to error and congestion than circuit-switched networks. Example: Asynchronous Transfer Mode (ATM), Frame Relay, Multi-Protocol Label Switching (MPLS), Synchronous Optical Network (SONET) and Synchronous Digital Hierarchy (SDH), Switched Multimegabit Data Service (SMDS), & X.25.

A very high-speed, low-delay technology that uses switching and multiplexing techniques to rapidly relay fixed-length (53-byte) cells that contain voice, video, or data. Cell processing occurs in hardware that reduces transit delays. _________ is ideally suited for fiber-optic networks that carry bursty (uneven) traffic.

A packet-switched, standard protocol that handles multiple virtual circuits by using High-level Data Link Control (HDLC) encapsulation between connected devices. ____________________ utilizes a simplified framing approach that has no error correction and Data Link Connection Identifiers (DLCIs) to achieve high speeds across the WAN. _____________________ can be used on Switched Virtual Circuits (SVCs) or Permanent Virtual Circuits (PVCs). An SVC is a temporary connection that's dynamically created (in the circuit establishment phase) to transmit data (which happens during the data transfer phase) and then disconnected (in the circuit termination phase). PVCs are permanently established connections. Because the connection is permanent, a PVC doesn't require the bandwidth overhead associated with circuit establishment and termination. However, PVCs are generally a more expensive option than SVCs.

A packet-switched, high-speed, highly scalable and highly versatile technology used to create fully meshed Virtual Private Networks (VPNs). It can carry IP packets, as well as ATM, SONET (Synchronous Optical Networking), or Ethernet frames. _________ is specified at both Layer 2 and Layer 3. Label Edge Routers (LERs) in an _________ network push or encappsulate a packet (or frame) with an ________ label. The lable information is used to switch the payload through the ___________ cloud at very high speeds. Label Switch Routers (LSRs) witin the __________ cloud make routing decisions based solely on the label information, wihtout actually examining the payload. At the egress point, an LER pops (decapsulates) the packet, removing the ___________ label when the packet exits the __________ network. One disadvantage of an _________ network is that a customer loses visibility into the Cloud. Or, if you're a glass-is-half-full type, one advantage of an ________ network is that an attacker loses visibility into the Cloud. *Hint: same term/acronym for all the blanks

A high-availability, high-speed, multiplexed, low-latency technology used on fiber-optic networks. ______________ was originally designed for the public telephone network and is widely used throughout the U.S. and Canada, particularly within the energy industry. Synchronous Digital Hierarchy (SDH) was developed after _________ and is used throughout the rest of the world. Data rates for ______________ and SDH are defined at OC (optical carrier) levels *Hint: only used one term and it's the same throughout all of the blanks

A high-speed, packet-switched, connectionless-oriented, datagram-based technology available over public switched networks. Typically, companies that exchange large amounts of data bursts with other remote networks use ______________.

The first packet-switching network, _______ is an International Telecommunication Union - Telecommunicatioons (ITU-T) standard that defines how point-to-point connections between data terminal equipment (DTE) and data carrier equipment (DCE) are established and maintained. ________ specifies the Link Access Procedure, Balanced (LAPB) protocol at the Data Link Layer and the Packet Level Protocol (PLP; also known as _________ Level 3) at the Network Layer. ________ is more common outside the United States but largely has been superseded by MPLS and Frame Relay.

The Dummies book wants you to remember this! FLIP THE CARD!

A bit-oriented, synchronous protocol that was created by the ISO to support point-to-point and multipoint configurations. Derived from SDLC, it specifies a data encapsulation method for synchronous serial links and is the default for serial links on Cisco routers. Unfortunately, various vendor implementations of the _________________________ protocol are incompatible.

A bit-oriented, full-duplex serial protocol that was developed by IBM to facilitate communications between mainframes and remote offices. It defines and implements a polling method of media access, in which the primary (front end) pols the secondaries (remote stations) to determine whether communication is required.

Networking devices that operate at the Data Link Layer include: (?)

A _____________________ is a semi-intelligent repeater used to connect two or more (similar or dissimilar) network segments. A ____________ maintains an Address Resolution Protocol (ARP) cache that contains the MAC addresses of individual devices on connected network segments. When a ______________ receives a data signal, it checks its ARP cache to determine whether the destination MAC address is on the local network segment. If the data signal turns out to be local, it isn't forwarded to a different network; if the MAC address isn't local, however, the _____________ forwards (and amplifies) the data signal to all other connected network segments. A serious networking problem associated with ________ is a broadcast storm, in which broadcast traffic is automatically forwarded by a __________, effectively flooding a network. Network ___________ have been superseded by switches. *Hint: same term for all the blanks

_______________________________ communication transmits data in a serial steam that has control data (start and stop bits) embedded in the stream to indicate the beginning and end of characters. __________________________ devices must communicate at the same speed, which is controlled by the slower of the two communicating devices. Because no internal clocking signal is used, parity bits are used to reduce transmission errors. *Hint: same term for all the blanks

____________________________________ communications utilize an internal clocking signal to transmit large blocks of data, known as frames. ____________________________ communication is characterized by very high-speed transmission rates. *Hint: same term for all the blanks

__________________________________ is a general term used to classify devices at the user end of a user-to-network interface (such as computer workstations). A __________ connects to Data Carrier Equipment (DCE; also known as Data Circuit-Terminating Equipment), which consists of devices at the network end of a user-to-network interface. The _______ provides the physical connection to the network, forwards network traffic, and provides a clocking signal to synchronize transmissions between the DCE and the ______. Examples: NICs (Network Interface Cards), modems, and CSUs/DSUs (Channel Service Units).

A ____________________________________ is a hardware device or configured node on a local area network (LAN) that allows wireless capable devices and wired networks to connect through a wireless standard, including Wi-Fi or Bluetooth. _____________________________ feature radio transmitters and antennae, which facilitate connectivity between devices and the Internet or a network. Also known as a hotspot. _____________________________may be used to provide network connectivity in office environments, allowing employees to work anywhere in the office and remain connected to a network. In addition, __________________ provide wireless Internet in public places, like coffee shops, airports and train stations. _______________________________ are most commonly thought of in the context of the 802 series of wireless standards, commonly known as Wi-Fi. While there are other wireless standards, the vast majority of the time the terms Wi-Fi hotspot and _____________________ are synonymous. *Hint: same term/ acronym for all blanks

What are the 4 basic types of wireless antennas?

The most common type of wireless antenna,__________________________________ are essentially short poles that transmit and receive wireless signals with equal strength in all directions around a horizontal axis. These type of antennas are often a dipole design.

Also known as dish antennas, ___________________ are directional dish antennas made of meshed wire grid or solid metal. These type of antennas are used to extend wireless ranges over great distances.

Similar in shape to omni-directional antennas, _________________________________ have reflectors that direct transmitted signals in a specific direction (usually a 60-120 degree pattern) to provide additional range and decrease interference in a specific direction.

Similar in appearance to a small aerial TV antenna, ___________________________________ are used for long distances in point-to-point or point-to-multipoint wireless applications.

Access points (APs) can operate in one of 4 modes:

The default configuration for most APs. The AP is directly connected to the wired network, and wireless clients access the wired network via the wireless access point. Also known as infrastructure mode.

The AP doesn't connect directly to the wired network, but instead provides an upstream link to another AP, effectively extending the range of the WLAN. Also known as stand-alone mode.

A rare configuration that isn't supported in most APs. ____________ mode is used to connect two separate wired network segments via a wireless access point.

Multiple APs work together to create the appearance of a single Wi-Fi network for larger homes and workspaces.

Dummies Tip: _____________________ is a type of WLAN architecture that doesn't have any APs. The wireless devices communicate directly with each other in a peer-to-peer network, such as between two notebook computers.

The ______________________________________ sends and receives bits across the network medium (cabling or wireless links) from one device to another. It specifies the electrical, mechanical, and functional requirements of the network, including network topology, cabling and connectors, and interface types, as well as the process for converting bits to electrical (or light) signals that can be transmitted across the physical medium. Various network topologies, made from copper or fiber-optic wires and cables, hubs, and other physical materials, comprise the _______________ layer. *Hint: same term for both blanks

There are 4 basic network topologies defined at the Physical Layer. List them: (?)

Each individual node on the network is directly connected to a switch, hub, or concentrator. All data communications must pass through the switch (or hub), which can become a bottleneck or single point of failure. A ____________ topology is ideal for practically any size environment and is the most common basic topology in use today. A _______________ topology is also easy to install and maintain, and network faults are easily isolated without affecting the rest of the network. *Hint: same term for all the blanks

All systems are interconnected to provide multiple paths to all other resources. In most networks, a partial ___________ is implemented for only the most critical network components, such as routers, switches, and servers (by using multiple network interface cards [NICs] or server clustering) to eliminate single points of failure.

A closed loop that connects end devices in a continuous __________. Functionally, this is achieved by connecting individual devices to a Multistation Access Unit (MSAU or MAU). Physically, this setup gives the ______________ topology the appearance of a star topology. __________ topologies are common in token ring and FDDI networks. In a ________ topology, all communication travels in a single direction around the ________. *Hint: same term for all the blanks

in a ____________________ topology, all devices are connected to a single cable (the backbone) that's terminated on both ends. ___________ networks were commonly used for very small networks because they're inexpensive and easy to install. However, in large environments, they're impractical because the media has physical limitations (namely, the length of the cabling), the backbone is a single point of failure (a break anywhere on the network affects the entire network), and tracing a fault in a large network can be extremely difficult. _______ networks are extremely rare today and are no longer the least-expensive or easiest-to-install network option. *Hint: same term for all the blanks

A communication medium that supports only a single communication signal at a time.

A communication medium that supports multiple communication signals simultaneously.

A cable with a center core of copper wire surrounded by a layer of insulation and then by a conductive braided shielding and finally encased in an insulation sheath. _____________________ is fairly resistant to EMI, has a low cost, and is easy to install.

Coax cable comes in two flavors: (?)

_____________ cable uses a screw-type connector, known as an Attachment Unit Interface (AUI)

_____________ cable is typically connected to network devices using a bayonet-type connector, known as a BNC (Bayonet Neill-Concelman) connector.