Port security
Close unnecessary ports and services, configure ports based on mac addresses
Interface security
Change default passwords, disable unused interfaces, use NAC
NAC
Requires authentication to access network. MAC filtering
Key management system
Management of encryption keys. Create keys for services or users, log key usage, automatically rotate keys
ACL
Allow or disallow types of traffic based on IP, destination, port number, time, application, etc
Firewall rules
Goes from top to bottom, most specific to most general. Implicit deny if there’s no match
URL filtering
Filter URL from usage. Could use list
Content filtering
If content is detected, it’s filtered out. Parental control or malware filtering for ex
Screened subnet
Subnet only for public facing things, separate from internal network
Security zones
Zone based security tech, more flexible than IP address ranges. Trusted or untrusted, internal or external, types of devices
-
OSI Model Layers 1.18
-
Networking Appliances 1.212
-
Cloud concepts and connectivity 1.37
-
Port Numbers 1.417
-
Networking Protocols 1.413
-
Transmission Media 1.531
-
Network Architectures and Topologies 1.612
-
IPv4 Addressing and Subnetting 1.712
-
Modern Network Environments 1.814
-
Routing Technologies 2.113
-
Switching Technology 2.211
-
Wireless Technology 2.320
-
Physical Installations 2.49
-
Network Organization 3.121
-
Network monitoring 3.210
-
Disaster Recovery 3.312
-
IP network services 3.419
-
Network Access 3.512
-
Security concepts 4.134
-
Network attacks 4.217
-
Network Security techniques 4.310
-
Troubleshooting methodology 5.18
-
Troubleshooting cabling and interfaces 5.220
-
Troubleshooting network 5.311
-
Troubleshoot performance 5.412
-
Troubleshooting tools 5.526
