M5 Network Architechture | Questions and answers
Terms in this set (100)
You are a network architect Balancing costs, compute and responsiveness, scalability, availability,
for a rapidly growing startup. and resilience.
The startup is planning to
expand its operations and is
considering a major upgrade
to its network architecture.
Which of the following
factors should be your
primary consideration when
designing the new network
architecture?
You are a cybersecurity Implementing multiple security measures at different
specialist for a financial network layers, including firewalls, intrusion detection
institution that is planning to systems, and regular patch management.
enhance its network security.
The institution has decided to
adopt a defense in depth
strategy.
Which of the following
approaches would BEST
,align with a defense in-
depth strategy?
A hospital has The security device should be configured to fail-closed.
implemented a security
device that processes
sensitive patient
information. The hospital
wants to ensure that in the
event of a failure, the
confidentiality and integrity
of the patient data take
priority over the system's
availability.
What should the hospital set
as the failure mode
configuration for this
security device?
,A financial institution is The security control device should be configured to fail-closed.
implementing a new security
control device to protect its
network infrastructure and
wants to ensure that in the
event of a failure, the
confidentiality and integrity
of its financial data take
precedence over system
availability.
What should the financial
institution set as the failure
mode configuration for this
security control device?
An organization implements a Fail-open
new network infrastructure and
plans to use an intrusion
prevention system (IPS) for
security. The IT manager
wants to ensure that the IPS
will continue to let traffic
flow if it fails.
Which failure mode should the
IT manager configure the
IPS?
An organization is Fail-open will allow all traffic, while fail-closed will block all traffic.
implementing an Intrusion
Prevention System (IPS) as part
, of its efforts to secure its
enterprise infrastructure.
The IT manager is
considering the failure
modes of the IPS and is
deciding between a fail-open
and a fail-closed
configuration.
What are the implications of
each configuration on network
traffic in the event of a
system failure?
The IT manager of a Deploy the IPS/IDS devices in inline mode at the network perimeter.
medium-sized organization
is designing a new network
infrastructure to secure its
enterprise infrastructure by
implementing an Intrusion
Prevention System (IPS) and
an Intrusion Detection System
(IDS). The manager is
considering different
deployment methods for the
IPS/IDS to optimize their
effectiveness.
The organization's
network includes multiple
security zones, a virtual
private network (VPN) for
Terms in this set (100)
You are a network architect Balancing costs, compute and responsiveness, scalability, availability,
for a rapidly growing startup. and resilience.
The startup is planning to
expand its operations and is
considering a major upgrade
to its network architecture.
Which of the following
factors should be your
primary consideration when
designing the new network
architecture?
You are a cybersecurity Implementing multiple security measures at different
specialist for a financial network layers, including firewalls, intrusion detection
institution that is planning to systems, and regular patch management.
enhance its network security.
The institution has decided to
adopt a defense in depth
strategy.
Which of the following
approaches would BEST
,align with a defense in-
depth strategy?
A hospital has The security device should be configured to fail-closed.
implemented a security
device that processes
sensitive patient
information. The hospital
wants to ensure that in the
event of a failure, the
confidentiality and integrity
of the patient data take
priority over the system's
availability.
What should the hospital set
as the failure mode
configuration for this
security device?
,A financial institution is The security control device should be configured to fail-closed.
implementing a new security
control device to protect its
network infrastructure and
wants to ensure that in the
event of a failure, the
confidentiality and integrity
of its financial data take
precedence over system
availability.
What should the financial
institution set as the failure
mode configuration for this
security control device?
An organization implements a Fail-open
new network infrastructure and
plans to use an intrusion
prevention system (IPS) for
security. The IT manager
wants to ensure that the IPS
will continue to let traffic
flow if it fails.
Which failure mode should the
IT manager configure the
IPS?
An organization is Fail-open will allow all traffic, while fail-closed will block all traffic.
implementing an Intrusion
Prevention System (IPS) as part
, of its efforts to secure its
enterprise infrastructure.
The IT manager is
considering the failure
modes of the IPS and is
deciding between a fail-open
and a fail-closed
configuration.
What are the implications of
each configuration on network
traffic in the event of a
system failure?
The IT manager of a Deploy the IPS/IDS devices in inline mode at the network perimeter.
medium-sized organization
is designing a new network
infrastructure to secure its
enterprise infrastructure by
implementing an Intrusion
Prevention System (IPS) and
an Intrusion Detection System
(IDS). The manager is
considering different
deployment methods for the
IPS/IDS to optimize their
effectiveness.
The organization's
network includes multiple
security zones, a virtual
private network (VPN) for
