Chapter 15 683
26
Which type of encapsulation provides for Local Acknowledgment?
TCP encapsulation.
27
What does the + in DLSw+ mean?
It means that this is Cisco's proprietary version of DLSw.
28
How many ports can DLSw+ load-balance over?
Four.
29
What three cache types does DLSw check for before flooding broadcasts?
Local, remote, group cache.
30
Do border peers provide for load balancing?
No.
Chapter 15
1
What is a bastion host?
A bastion host can be considered a Web server or a secure gateway that supports a limited
number of applications for use by outsiders.
2
Name four services to turn off on the (perimeter) router that interfaces with the Internet.
CDP, finger, tcp-small-servers, udp-small-servers.
3
Can a Cisco 2500 router be used as a firewall?
Yes. The 2500 router can be used as a firewall and also supports CBAC!
4
What are network security policies?
Network security policies are well-documented rules about what activities are permitted
on the network.
5
On what router platforms is CBAC available?
The Cisco 1600 and 2500 series.
6
What is a "choke" router?
The choke router sits behind the perimeter router on the customer side of the network,
blocking the DMZ from the internal network.
7
At what layer of the OSI model do Stateful firewalls work?
Layer 4.
87200333.book Page 683 Wednesday, August 22, 2001 1:41 PM