Chapter 21: Wireless Networking

Question 1

IEEE 802.11 Standard

Answer 1

Been around for about 20 years. The primary way wireless devices communicate.

Question 2

WAP

Answer 2

Wireless access point (WAP) - Bridge between an ethernet network and a wireless 802.11 network. WAP has one ethernet connector.

Question 3

Wireless Home Router

Answer 3

Has antennas and a lot more connectors since it acts as a router, switch, and wireless access point in one device.

Question 4

Infrastructure model

Answer 4

A system where 802.11 network is comprised of many WAPs.

Question 5

Wireless Network Card

Answer 5

Old versions snap in & have an antenna attached. Can also be in a USB stick. Some computers have wireless built in.

Question 6

Laptop wireless antennas

Answer 6

Laptop wireless antennas are usually run around the monitor. Important for A+ test.

Question 7

SSID

Answer 7

Service Set Identifier (SSID) - name of a wireless network

Question 8

Ad hoc mode

Answer 8

No WAP. when a computer/laptop acts as a wireless access point for other devices.

Question 9

Antennas

Answer 9

Send/receive signal. used to access wireless connection.

Question 10

Omni-Directional Antenna

Answer 10

One piece of metal that sticks straight up. makes a fuzzy ball shape signal.

Question 11

Dipole Antenna

Answer 11

Two omni-directional antennas pointing in opposite directions. Big flat circular signal.

Question 12

Patch Antenna

Answer 12

Flat looking antenna. Propagates in one direction. Half of a big fuzzy ball pattern.

Question 13

Yagi Antenna

Answer 13

Highly directional. A really long football shape. usually have two of these pointed at each other for long throws.

Question 14

Parabolic

Answer 14

Very very long highly directional throws

Question 15

Site Survey

Answer 15

A tool which can show details on wifi networks running in the area.

Question 16

WAP Channel best practices

Answer 16

Best practice is to have the WAP set the channels automatically

Question 17

Comptia A+ and SSID security

Answer 17

Comptia A+ wants you to turn off SSID name broadcast for security.

In reality this doesn’t help much, but comptia says it does so remember for the test.

Question 18

Transmit power

Answer 18

500 ml watts typical router usage. if your home has dead spots, you can increase the power. If it is stretching further than you like you can decrease the power.

Question 19

Which is not a wireless encryption standard?

WEP

WPA

WEP2

WPA2

Answer 19

WEP2 never existed. The others are all wireless encryption schemes.

Question 20

Which should you try first if your device can’t connect to a remembered public wireless network?

Answer 20

Delete the profile and try to make a new connection.

Question 21

If you spot a WAP on the ceiling of a large room with no obvious power outlet nearby, how is it most likely powered?

Answer 21

PoE - Power of Ethernet is a common way to provide power to a WAP.

Question 22

Who can read data between devices and wireless access point?

Answer 22

Anyone with a radio receiver can read data between devices and a wireless access point. Just radio waves.

Question 23

Which is most likely to prevent a device from connecting to a previously used Wi-Fi network?

The atenna(s) are poorly oriented.

The SSID has changed

Too many devices are accessing the WAP

The WAP is disconnected from the internet.

Answer 23

The SSID has changed. The MOST-likely answer is that the SSID changed. Poor atenna orientation mad reduce speed or range. Too many devices using the WAP are likely to cause low or intermittent connectivity. Even if a WAP is disconnected from the internet, devices can still connect.

Question 24

WEP

Answer 24

Wired Equivalent Privacy (WEP) - built in encryption, uses hexadecimal keys that users needed to know. used RC-4 which was easily cracked.

Question 25

RC-4

Answer 25

Ancient form of encryption. It's encryption method was predicated and people cracked it mechanically in little time.

Question 26

TKIP

Answer 26

Temporal Key Integrity Protocol (TKIP) - Improved on RC-4 model. Encryption using this protocol became a lot less predictable than original RC-4.

Question 27

AES

Answer 27

Advanced Encryption Standard (AES) - Replaced TKIP and still used today. primary encryption for everything from secure webpages - Voiceover IP calls.

Question 28

PSK

Answer 28

Personal/Pre-Shared Key (PSK) - Like WEP have to share key with users. Made by wireless agencies who didn't want to wait for 802.11 to come out with AES. Uses RC-4 with TKIP.

Question 29

RADIUS

Answer 29

Remote Authentication Dial-In User Service (RADIUS) server - have to log in with username and password. Box on your network. Hard to configure.

Question 30

WPA

Answer 30

Wi-Fi Protected Access (WPA) - Personal/Pre-Shared Key (PSK) + Temporal Key Integrity Protocol (TKIP). Not as good as 802.11i, but still very robust. Developed by wireless companies. As close as they could get to 802.11i sandards.

Question 31

WPA2

Answer 31

Developed by wireless companies. Has all the same features of 802.11i. Been out for a while. Almost all wireless access points can handel.

Question 32

WPS

Answer 32

Wi-Fi Protected Setup (WPS) - Set up WPA with a push of a button. Easily hacked. Sends an 8 digit pin in two pieces. Less than 10,00 chance to guess what the two pieces are which is trivial for a computer. Recommend not activating WPS.

Question 33

WPS3 Implementation Types

Answer 33

WPA3-Personal - at home use. WPA3-Enterprise - Used by business WPA3-Wifi Enhanced Open - Public Wi-Fi Hotspots.

Question 34

WPA3 Improvements

Answer 34

Takes longer to Hack - Requires hackers to interact with wifi every attempt making it more time consuming. "Forward Security" - Even if hacker gets log-in information data can't be decrypted, but newly cached data maybe decrypted.

Question 35

Kerberos

Answer 35

An authentication protocol. Installed on domain control of active directory. Has Key distribution center (KDC) and provides Authentication Services (AS)

Question 36

KDC

Answer 36

Key Distribution Center (KDC) is a crucial component in the Kerberos protocol, responsible for managing and distributing cryptographic keys for secure communication within a network.

Question 37

AS

Answer 37

Authentication Services - authenticates users connection to networks utilizing Kerberos.

Question 38

TLS

Answer 38

Ticket Granting Server (TLS) is a crucial component in the Kerberos authentication protocol, which is widely used for network security. It acts as a trusted intermediary between a client and various services within a network. The TGS issues session tickets to clients, which they can then present to specific network services to gain access.

Question 39

Disable a Network

Answer 39

Can disable a network by right-clicking connection and choosing disable.

Question 40

Airplane Mode vs Disable

Answer 40

Airplane mode is a toggle that disables all Wi-Fi connections until airplane mode is toggled off. Disable works on a single connection.

Question 41

Network Profile

Answer 41

When you select "remember this network" when connecting to a Wi-Fi a network profile is created. Settings -> network -> Wi-Fi -> Manage known networks -> Show all stored network profiles.

Question 42

Trouble with a previously connected to Wi-Fi

Answer 42

Probably a network profile issue. Simply right click network, forget, and log in again.

Question 43

Issues with connecting to an SSID: Nic is configured as DHCP client.

Answer 43

When you connect you can connect, but you get an APIPA (169.254). Clue that you have a bad password. Most modern systems may say "i cannot connect to this network."

Question 44

Issues with connecting to an SSID: Wireless set to static IP

Answer 44

Can easly set wireless NIC to static IP rather than using DHCP. This is rare and weird, but perfectly functional. You will need to give users IP address, Gateway, etc of Wi-Fi.

Question 45

PoE

Answer 45

Power over Ethernet (PoE) common in WAPs (wireless access points). They get power from their ethernet connection to the network's switch.

Question 46

PoE 1st Generation and PoE+

Answer 46

PoE+ is more dominant than 1st generation. PoE+ provides a lot more electricity for individual devices.

Question 47

PoE Switch

Answer 47

A switch capable of providing electricity over ethernet.

Question 48

PoE injector

Answer 48

AC adapter into injector. One end into switch other end into PoE WAP.

Question 49

AAA

Answer 49

Authorization, Authentication, Accounting. RADIUS or TACAS+ Boxes. Provide Security. WPA2 but no PSK. Separate boxes attached to network. Very aggressive authentications and authorization to protect network.

Question 50

ESSID

Answer 50

Extended SSID - All WAPs and Wi-Fi network have same SSID. allows you to maintain high Wi-Fi connection across large area. Devices swap to nearest WAP.

Question 51

Isolation

Answer 51

Allows user connected to the WAP to only communicate with the WAP and no other devices on the Wi-Fi Network.

Question 52

Separate SSIDs

Answer 52

Can be enabled or disabled easily for guest access to WAPs

Question 53

Rouge AP Detection

Answer 53

You can set up WAPs to memorize the MAC address of all currently connected WAPs. Then if someone tries to add an access point to your Wi-Fi Rouge AP Detection will not allow the new MAC address.

Question 54

Rate Limit

Answer 54

Throttle speed users can access on Wi-FI

Question 55

Captive Portal

Answer 55

Takes users to a webpage after connecting to Wi-Fi to enter credentials before accessing internet.

Question 56

Special Enterprise Wireless LAN Switches

Answer 56

A switch with PoE. Sets up one captive portal, one SSID, and sends it to all WAPs.

Question 57

RFID

Answer 57

Radio Frequency Identification (RFID) - Not very fast. Vert popular in warehouses. a small sticker that holds a ton of information. RFID reader uses radio frequency energy to power sticker and sticker sends info to RFID reader.

Question 58

NFC

Answer 58

Near Field Communication - most smart devices have NFC. NFC is RFID. Must be very close to work. Disneyland uses a lot for fast pass and holding your ticket, tap to pay another example.

Question 59

Blue Tooth

Answer 59

Designed to join two devices and only two devices together in a personal area network (PAN). Some Bluetooth paring requires a code.

Question 60

Bluetooth Class 1 Power and Range

Answer 60

100 mW of power. 100m Range.

Question 61

Bluetooth Class 2 Power and Range

Answer 61

2.5 mW of power. 10m Range.

Question 62

Bluetooth Class 3 Power and Range

Answer 62

1 mW of power. 1m Range

Question 63

Storage Area Network (SAN)

Answer 63

A network of storage devices that provides data storage services to another network.

Question 64

Network Attached Storage (NAS)

Answer 64

Storage on a network, allows users on network to store and share data.

Question 65

SAN Four Components

Answer 65

A network Interface card or network adapter wired or wireless. Storage devices such as hard disk drives, solid state drives, etc. Servers provide interface between the SAN and the host requesting data services. Fiber channel protocol is the most common protocol on a SAN. Internet SCSI (iSCSI) is also commonly used in smaller SANs

Question 66

Wi-Fi Analyzer

Answer 66

Very useful tool when trouble shooting network issues. Wi-Fi Man is an example of a Wi-Fi analyzer app.

Question 67

Trouble Shooting: No connectivity to previously connected SSID

Answer 67

Can't connect to previously connected SSID. Check with owner of SSID to see if name/password changed.

Question 68

Trouble Shooting: low RF signal.

Answer 68

Low Radio Frequency (RF) signal. Can lead to no, low, slow, or intermittent connectivity. Get closer to SSID Check External antennas, position matters. When you have multiple antennas double check some may be 2.4 ghz ban and 5 ghz ban antennas

Question 69

Trouble Shooting: Cannot find previously connected SSID

Answer 69

Check with owner to see if SSID changed. SSID might have been changed to hide SSID. Disabling SSID broadcast can cause connectivity problems. You will need to manually configure profile for this Wi-Fi. Need exact SSID name, WPA or WPA2. Passcode

Question 70

Trouble Shooting: Limited Connectivity

Answer 70

You're connected, but speed is reduced from optimal. Check for external interference (wall, baby monitor, microwave, etc.) can interfere with wireless signal. Move physical location of the WAP or move interference objects.

Question 71

Trouble Shooting: Intermittent Connectivity

Answer 71

Internet working, suddenly not, then is. RF Signals low - RF really good at getting around obstacles, but it can have trouble and may initiate restart to try and fix issue. Too many people on Wi-Fi - get more WAPs, put in QoS to add priority users.