Chapter 3Understanding Devices and Infrastructure

THE FOLLOWING COMPTIA SECURITY+ EXAM OBJECTIVES ARE COVERED IN THIS CHAPTER:

  • images 2.1 Install and configure network components, both hardware- and software-based to support organizational security.
    • Firewall: ACL; Application-based vs. network-based; Stateful vs. stateless; Implicit deny
    • VPN Concentrator: Remote access vs. site-to-site; IPSec (Tunnel mode, Transport mode, AH, ESP); Split tunnel vs. full tunnel; TLS; Always-on VPN
    • NIPS/NIDS: Signature-based; Heuristic/behavioral; Anomaly; Inline vs. passive; In-band vs. out-of-band; Rules; Analytics (False positive, False negative)
    • Router: ACLs; ...

Get CompTIA Security+ Study Guide, 7th Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial