Reading...
Play button
Play button
Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
41 Cards in this Set
- Front
- Back
|
What is the responsibility of Access Control?
|
Determining how and what resources can be accessed
|
|
|
What is the respocibility of User authentication?
|
Determine who has access to recourses
|
|
|
A Check Point Security Gateway at the boundary of a network does what?
|
Inspect and provides access control for all gateway traffic.
|
|
|
What is SmartDashboard?
|
A SmartConsole client application tat admins use to define and apply security policies to gateways
|
|
|
Stateful Packet Inspection provides what?
|
Full application level awareness and comprehensive access control for more the 150 predefined application, services,and protocols as well as the ability to specify and define custom services
|
|
|
What are the 7 layers of the OSI Model?
|
1) physical
2) data-link 3) network 4)transport 5)session 6)presentation 7)application |
|
|
What is represented in the physical layer of the OSI model?
|
Physical media (ether net cards, cables, and hubs)
|
|
|
What is represented at the data link layer of the OSI Model?
|
Network traffic is delivered to LANs
|
|
|
What is represented at the Network layer of the OSI model?
|
Data transmitted over WANs more commonly the internet.
|
|
|
What is represented at the transport layer of the OSI model?
|
specific network applications and communication sessions are indenified
|
|
|
What is represented in the Session, Presentation and Application layers of the OSI Model?
|
End User systems and applications
|
|
|
What technologies does Check Point use to grant or deny traffic?
|
1) Packet Filtering
2) Stateful Inspection 3) Application Intelligence |
|
|
What is the most basic form of a firewall?
|
Packet Filter
|
|
|
What layers of the OSI model do most packet filters work at?
|
Layer 3 and Layer 4
|
|
|
What is the typical rule base going to include?
|
1) source address
2) destination address 3) source port 4) destination port 5) Protocol |
|
|
What does Stateful inspection add to a normal firewall?
|
Level 4 awareness
|
|
|
What is the major difference between stateful packet inspection and standard packet filtering?
|
Stateful looks at the entire content as well as the packet header when deciding what to do with a packet.
|
|
|
What command do you use to see a list of state tables in the Check Point CLI?
|
fw tab -s
|
|
|
What is the purpose of the INSPECT Engine?
|
used to extract state related information for all application layers and maintinas this information in these synamic state tables needed for evaluating toher connections, The INSPECT Engine enforces security policies on the security gateway they reside on.
|
|
|
What is Application Intelligence?
|
Advanced capabilities, integrated into the firewall and IPS. These detect and prevent application level attacks.
|
|
|
What is an example of a layer 6 (presentation) protocol?
|
HTTP,FTP,SMTP
|
|
|
What is example of a layer 4 (transport) protocol?
|
TCP,UDP
|
|
|
What is an example of a layer 3 (network) Protocol?
|
IP
|
|
|
What is an example of a layer 2 (data link) protocol?
|
Ethernet
|
|
|
What is a Rule Base?
|
A collection of individual rules that determine your security policy.
|
|
|
What does bridging mode allow for?
|
placement of a security gateway with out having to change the existing IP routing.
|
|
|
What are the four most critical layers of network security?
|
network perimeter, network core, the web and the end point.
|
|
|
What is the SmartDashboards purpose?
|
Provide a comprehensive user interface for defining and managing multiple elements of the security policy.
|
|
|
What does SmartDashboard allow you to define security policies for?
|
Network Object (i.e hosts, networks, and gateways.)
|
|
|
What is the SmartMap?
|
A security policy visualization tool that provides a detailed map of an organization's security deployment.
|
|
|
What is the SmartView Tracker?
|
Tool used for managing and tracking logs and alerts. It provides these in realtime
|
|
|
What does SmartPortal allow?
|
Web based administration of security management server
|
|
|
What does SmartView Monitor provide?
|
A cetnral interface for monitoring network activity and the performance of check point applications.
|
|
|
What does the Eventia reporter provide?
|
A tool to analyze and audit traffic.
|
|
|
Eventia Analyzer provides what function?
|
Centralized realtime event correlation and management if log data for all check point products as well as third part firewalls router switches intrusion detection systems operating systems applications and webservers.
|
|
|
What does SmartProvisioning Provide?
|
centeralized administration and provisioning of Check Point security devices via a single management console.
|
|
|
What is SmartUpdate tool used for?
|
Manage and maintain a license repository as well as to facilitate upgrading Check Point software.
|
|
|
What role does the Security Manager Server play?
|
Manage the security policy.
|
|
|
What is a Permission Profile?
|
A permission ID card which is assigned to Admins or Admin groups.
|
|
|
What is SIC and What messures are taken to ensure the safety of SIC?
|
Secure Internal Communications
1) Certificates for authentication 2) Standard-based SSL for the creation of the secure channel. 3) 3DES for encrytion |
|
|
What 3 things does the Internal Certificate Authority (ICA) provide Certificates for?
|
1) SIC
2) VPN Certificated for gateways 3) Users |
