What is the significance of configuring zone-based firewalls in complex network environments?
- Zone-based firewalls provide a flexible and granular approach to defining security policies between network zones
- Zone-based firewalls are only suitable for small-scale networks and may not be effective in complex environments
- Configuring zone-based firewalls is unnecessary in complex network environments
- Zone-based firewalls only support stateless packet filtering, limiting their effectiveness
Configuring zone-based firewalls in complex network environments is significant because it provides a flexible and granular approach to defining security policies between different network zones.
To enhance security, Port Security settings can be made persistent across reboots by saving them in the ________.
- Flash Memory
- NVRAM
- Running Configuration
- Startup Configuration
Port Security settings can be saved in the startup configuration to make them persistent across reboots.
A network administrator notices that their AS is receiving suboptimal BGP routes. What BGP attribute should they adjust to influence incoming traffic paths?
- Local Preference
- AS Path
- MED (Multi-Exit Discriminator)
- Weight
The Local Preference attribute in BGP is adjusted to influence incoming traffic paths. It is used within the same AS to set preferences for routes.
In a network with multiple switches, how does the Spanning Tree Protocol (STP) determine the root bridge?
- Highest MAC address
- Highest bridge priority
- Lowest MAC address
- Lowest bridge priority
The Spanning Tree Protocol (STP) determines the root bridge based on the lowest bridge priority. If priorities are the same, it uses the lowest MAC address as a tiebreaker.
In a multi-homed network environment, what BGP strategy could be employed to avoid being a transit AS for other networks?
- Weight
- Local Preference
- AS Path Prepending
- Route Reflectors
AS Path Prepending is a BGP strategy in a multi-homed network to avoid being a transit AS for other networks. It adds the AS number multiple times to make the path less favorable.
IPv6 uses _________ to simplify and improve aspects of IP address assignment and network renumbering.
- Dynamic Host Configuration Protocol (DHCPv6)
- Internet Control Message Protocol version 6 (ICMPv6)
- Routing Information Protocol version 6 (RIPng)
- Stateless Address Configuration (SLAAC)
IPv6 uses Stateless Address Configuration (SLAAC) to simplify and improve aspects of IP address assignment and network renumbering.
The _______ record in DNS is used to point a domain to a physical IP address.
- A
- MX
- CNAME
- PTR
The CNAME (Canonical Name) record in DNS is used to point a domain to a physical IP address.
Which OSI layer handles the routing of packets across different networks?
- Data Link Layer
- Network Layer
- Physical Layer
- Transport Layer
The Network Layer of the OSI model is responsible for routing packets across different networks.
What does GRE stand for in the context of network tunneling?
- Generic Routing Encapsulation
- General Resource Encryption
- Graphical Routing Environment
- Global Reachability Extension
GRE stands for Generic Routing Encapsulation in the context of network tunneling.
In _______ topology, data is transmitted in one direction only, making it less prone to data collision.
- Bus
- Point-to-Point
- Ring
- Star
In Point-to-Point topology, data is transmitted in one direction only, making it less prone to data collision. This is suitable for dedicated communication between two devices.