Day 10 Quiz - Physical & Network Security

Port Security is used to control access to switch ports by specifying which devices are allowed to connect to each port. Port security features, such as limiting the number of MAC addresses that can be learned on a port or binding specific MAC addresses to a port, help prevent unauthorized devices from accessing the network through unused or inactive ports.

Secure Simple Network Management Protocol (SNMP) involves using SNMPv3, which provides enhanced security features such as authentication and encryption. This ensures that SNMP data is protected from unauthorized access and eavesdropping by requiring proper credentials and encrypting the data transmitted over the network.

Router Advertisement (RA) Guard is used to prevent unauthorized or rogue devices from sending Router Advertisement messages in an IPv6 network. By filtering out or blocking these rogue RA messages, RA Guard helps to protect the network from being disrupted by devices pretending to be legitimate routers.

This technique involves turning off or disabling network services and protocols that are not required for the network's operation. By reducing the number of active services, you minimize potential vulnerabilities and reduce the attack surface that could be exploited by attackers.

Password complexity/length refers to the practice of setting strong passwords that include a combination of uppercase and lowercase letters, numbers, and special characters, as well as ensuring passwords meet a minimum length requirement. This technique enhances security by making it harder for attackers to guess or crack passwords.

Access control lists (ACLs) are used to control traffic flow in a network by allowing or denying access to network resources based on predefined rules. By configuring ACLs, administrators can restrict access to specific IP addresses, ports, or protocols, thereby enhancing network security.

Patch and firmware management is the process of regularly updating software and firmware on network devices to address known vulnerabilities and security issues. By keeping devices up-to-date with the latest patches and firmware releases, organizations can mitigate the risk of exploitation by cyber threats.