Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
27 Cards in this Set
- Front
- Back
|
Firewall rules function in two ways: admit all traffic, except that which conforms to the applied rules, and secondly, block all traffic, except that which conforms to the applied rules. How does the Windows Firewall work for inbound traffic and for outbound traffic? |
Inbound--block all. Outbound--permit all |
|
|
If an administrator wants to enable the "Block all incoming connections, including those in the list of allowed apps" setting, to which of the firewall profiles does it apply? |
Public, private, and domain |
|
|
Windows Firewall allows an administrator to import and export firewall rules. What are the rules' file extension?
|
,wfw
|
|
|
What is the typical incoming port number for a web server?
|
80
|
|
|
You can configure the Windows Firewall to allow or block specific _________.
|
ports, protocols, applications, users, and IP address ranges
|
|
|
What GPO node presents the interface with which to configure Windows Firewall properties?
|
Computer Configuration\Policies\Windows Settings\Security Settings\Windows Firewall
|
|
|
What is the primary objective of a firewall?
|
To permit traffic in and out for legitimate users, and to block the rest
|
|
|
A firewall is essentially a series of _____ that examine the contents of packets and the traffic patterns to and from the network to determine which packets they should allow to pass through.
|
Filters
|
|
|
In Windows Firewall Customized Settings, there are three profiles (public, private, and domain). What differentiates these profiles from each other?
|
Public is for servers accessible to temporary users. Private is for servers on an internal network. Domain is for servers in which users are all authenticated.
|
|
|
When creating a firewall exception, what is the difference between opening a port and allowing an application through?
|
Allowing an application opens the specified port only while the program is running, and thus is less risky.
|
|
|
Windows Firewall allows you to create inbound, outbound, and connection security rules for individual servers or systems. How can you do this for multiple systems?
|
You can create a new Group Policy Object and you can import settings from a policy file created earlier. Then deploy the GPO to other systems on the network.
|
|
|
What does a firewall protect your company against?
|
Network intrusion attempts, such as a denial of service attack
|
|
|
Windows Firewall uses three profiles to represent the type of network to which the server is connected. What are the three profiles?
|
Domain, private, and public
|
|
|
For the Windows Firewall private profile, what type of network is expected?
|
An internal network that is not accessible by unauthorized users
|
|
|
What does the term "filter” refer to in the Windows Firewall With Advanced Security console?
|
The ability to display inbound or outbound rules according to a profile
|
|
|
If a user attempts to use an Internet-based e-mail account, how will Windows Firewall respond? |
The firewall does not block client-initiated network traffic by default.
|
|
|
What tool offers more flexibility in creating rules compared with the Windows Firewall interface under Control Panel?
|
Windows Firewall With Advanced Security snap-in for the Microsoft Management console
|
|
|
In the Windows Firewall With Advanced Security console, while creating a new rule, the Program page specifies whether the ______. |
rule applies to all programs, to one specific program, or to a specific service
|
|
|
By exporting the Windows Firewall policy, you have a file with a .wfw extension that contains _____. |
all its rules, including the preconfigured rules and the ones you have created or modified
|
|
|
What is AppLocker also known as? |
Application control policies
|
|
|
What Windows versions support the use of AppLocker polices, which poses a disadvantage compared to using software restriction policies? |
Windows 7 and Windows Server 2008 R2 or later
|
|
|
How does AppLocker handle all executables, installer packages, and scripts by default? |
AppLocker blocks all by default, except for those specified in Allow rules.
|
|
|
What is the greatest advantage of AppLocker over software restriction policies? |
You can Create Rules Automatically
|
|
|
What parameter in the Windows Firewall New Inbound Rule Wizard specifies what the firewall should do when a packet matches the rule? |
Action
|
|
|
What parameter in the Windows Firewall New Inbound Rule Wizard specifies whether the rule applies to all programs, to one specific program, or to a specific service? |
Program
|
|
|
What parameter in the Windows Firewall New Inbound Rule Wizard specifies the IP address range of local and remote systems to which the rule applies? |
Scope
|
|
|
What parameter in the Windows Firewall New Inbound Rule Wizard specifies the exact type of traffic at the network or transport layer, which the firewall can block or allow? |
Protocol and Ports |
