Behavioral Computer Firewall Interview Preparation Guide

Download PDF

A firewall is a part of a computer system or network that is designed to block unauthorized access while permitting authorized communications. It is a device or set of devices which is configured to permit or deny computer applications based upon a set of rules and other criteria.
Firewalls can be implemented in either hardware or software, or a combination of both.

In windows 2003 server, built in firewall is present

To enable firewall in Window...Start - Control panel - Security center -Turn On the Firewall Button and enable it. ...

A firewall system in which service is provided by processes that maintain complete TCP connection state and sequencing. Application layer firewalls often re-address traffic so that outgoing traffic appears to have originated from the firewall, rather than the internal host.

The process of determining what types of activities are permitted. Usually, authorization is in the context of authentication: once you have authenticated a user, they may be authorized different types of access or activity.

A router configured to permit or deny traffic based on a set of permission rules installed by the administrator.

A software agent that acts on behalf of a user. Typical proxies accept a connection from a user, make a decision as to whether or not the user or client IP address is permitted to use the proxy, perhaps does additional authentication, and then completes a connection on behalf of the user to a remote destination.

The process of storing information about events that occurred on the firewall or network.

Depend on firewall configuration, all most authorize port nb 80, so we can communicate over Http protocol. ...

The technique of securing an individual system from attack. Host based security is operating system and version dependent.

An attack originating from inside a protected network.

A firewall in which traffic is examined at the network protocol packet layer.

A router that connects your network to the external Internet. Typically, this is your first line of defense against attackers from the outside Internet. By enabling access control lists on this router, you'll be able to provide a level of protection for all of the hosts `behind' that router, effectively making that network a DMZ instead of an unprotected external LAN.

Rules for packet filters (typically routers) that define which packets to pass and which to block.

An authentication technique whereby a server sends an unpredictable challenge to the user, who computes a response using some form of authentication token.

A standalone program that, when run, copies itself from one host to another, and then runs itself on each newly infected host. The widely reported 'Internet Virus' of 1988 was not a virus at all, but actually a worm.

When a user performs an action that they should not have, according to organizational policy or law.

A network gateway joins two networks together through a combination of hardware and software.A network firewall guards a computer network against unauthorized incoming or outgoing access. Network firewalls may be hardware devices or software programs. ...

A network gateway joins two networks together through a combination of hardware and software.A network firewall guards a computer network against unauthorized incoming or outgoing access. Network firewalls may be hardware devices or software programs. ...

A portable device used for authenticating a user. Authentication tokens operate by challenge/response, time-based code sequences, or other techniques. This may include paper-based lists of one-time passwords.

A router or system capable of routing traffic by encrypting it and encapsulating it for transmission across an untrusted network, for eventual de-encapsulation and decryption.

An attack whereby an active, established, session is intercepted and co-opted by the attacker. IP Splicing attacks may occur after an authentication has been made, permitting the attacker to assume the role of an already authorized user. Primary protections against IP Splicing rely on encryption at the session or network layer.

Your companys employee assistance program (EAP) application is now required to be deployed on the Web. The following are characteristics and requirements of the new system: The UI is an off-the-shelf, unsigned terminal-emulator applet. The applet communicates with a terminal server using a proprietary TCP/IP-based protocol. The terminal server sits behind the corporate firewall and listens on port 10001. The only configurable items for the applet

A host on a network behind a screening router. The degree to which a screened host may be accessed depends on the screening rules in the router.

Traceroute is based on ICMP type 30 under Windows and UDP under *NIX; traceroute pacjets that would hit the firewall should be dropped similarly any echo replay coming from inside the firewall should be restricted outbound. The answer: traceroute can ...

A firewall block everything.it depends on you when configuring your network wat traffic to let in and wat traffic to block.its acts as a gaurd to u r network.its like a screening of a person on a airport...its does a deep pack inspection.