Diffie Hellman Group
cisco IOS the 1536-bit Deffie-Hellman prime modulus equivalent to Group 5
News
EIGRP
Refer to the Exhibit A router running EIGRP with the no ip classless command contains the routing table as shown in the exhibit. What will happen to a packet destined
FTP passive mode
Using FTP passive mode, after the client opens the command channel (port 21) to the ftp server and requests passive mode. The Next Step is: The FTP server allocates a port to use
ESP
ESP can operate in either tunnel or transport mode ESP uses IP portocol 50
TCP Port Forwarding application using IOS WebVPN
To enable TCP Port Forwarding application using IOS WebVPN, Java Applet needs to be downloaded to the cleint.
ASA fail-over mode
Whenever a failover takes place on the ASA running in failover mode, all active connections are dropped and clients must re-establish their connections unless: The ASA is configured for Active-Active
NAA
In the exhibit is an example of a NAC applicance network. The network utilizes Out of ban admission control NAC Appliance Agent (NAA) is used to verify the end user?
non-repudiation
RSA Signature is the best way to provide sender non-repudiation
A Cisco router acting as a network access device
Sends and recieves posture information to and from the policy server using the RADIUS protocol, is a function of a Cisco router acting as a network access device (NAD) in
Continue reading…A Cisco router acting as a network access device
RADIUS Packet Flows
N to S: RADIUS Access-Request S to N: RADUIS Access-Challenge N to S Raduis Access-Request Sto N Radius Access-accept C to N: Radius Access-Request N to C RADIUS Access-Accept. C
The Cisco Anomaly Guard and Detector functions for preventing DDOS attack
Builds baseline profiles of normal operating conditions, enabling rapid identification of unusual activity that indicates an atack. Dynamic diversion redirects and cleans only traffic destined for trageted devices, allowing unaffected
Continue reading…The Cisco Anomaly Guard and Detector functions for preventing DDOS attack
The DHCP “starvation” attack
Exhausting the address space available on the DHCP servers so an attacker can inject their own DHCP server addresses for malicious reasons, describes the DHCP “starvation” attack.
ASA/PIX
The number of packets (or flows) dropped because they do not confirm to ASP?PIX security policy can be viewed using the command Show asp drop
Hashing
SHA-256 is an extension to SHA-1 with a longer output. Changing 1 bit of the input to SHA-1 changes 1 bit of the output
PGP
With PGP, the following entity signs a user’s public key, A third party that belongs to whats often known a web of trust that can verify the relationship between the
EMB_LIM static command
Using the EMB_LIM option in the static command, is one way to configure the security appliance to protect against DoS attacks
multiport GRE
configureing a multiport GRE (Mgre) tunnel interface, Tunnel Destination is not an option.
VLAN
Cleint without an 802.1x supplicant connecting to port fa0/1 will be assigned to the vlan 10, based on the following Partial configuration: Interface FsaEthernet0/1 Switchport access vlan 100 Switchport mode
Uses of NTP
NTP crucial for accurate logging, validating certificates, kerberos tickets.
Security Threat Mitigation System – Secuity Reporting system
Security Threat Mitigation System is a Security reporting system in analogous to CS-MARS.