Chapter 3Understanding Devices and Infrastructure
THE FOLLOWING COMPTIA SECURITY+ EXAM OBJECTIVES ARE COVERED IN THIS CHAPTER:
- 2.1 Install and configure network components, both hardware- and software-based to support organizational security.
- Firewall: ACL; Application-based vs. network-based; Stateful vs. stateless; Implicit deny
- VPN Concentrator: Remote access vs. site-to-site; IPSec (Tunnel mode, Transport mode, AH, ESP); Split tunnel vs. full tunnel; TLS; Always-on VPN
- NIPS/NIDS: Signature-based; Heuristic/behavioral; Anomaly; Inline vs. passive; In-band vs. out-of-band; Rules; Analytics (False positive, False negative)
- Router: ACLs; ...
Get CompTIA Security+ Study Guide, 7th Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.