Chapter 22
1: | The Cisco IOS Firewall feature set is built around the concept of preventing what? |
A1: | Answer: The Cisco IOS Firewall feature set is built around the concept of preventing unauthorized access to your protected network resources. |
2: | When an attacker opens a large number of half-open TCP connections, this is what type of attack? |
A2: | Answer: This is a DoS attack, designed to deny legitimate users access to your resources. |
3: | TCP intercept, by default, drops which connection first? |
A3: | Answer: TCP intercept drops the oldest half-open connection first. |
4: | What feature in the Cisco IOS Firewall gives you intelligent filtering of TCP and UDP packets? |
A4: | Answer: Context-Based Access Control (CBAC) gives you intelligent filtering of TCP and |
Get CCIE Practical Studies: Security (CCIE Self-Study) now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.