PrepAway - Latest Free Exam Questions & Answers

Which of the following is a security access control technique that allows or prevents specific network devices

Which of the following is a security access control technique that allows or prevents specific network devices from accessing the network?

PrepAway - Latest Free Exam Questions & Answers

A.
Ingress filtering

B.
MAC filtering

C.
Route filtering

D.
Packet filtering

Explanation:
MAC filtering is a security access control technique that allows specific network devices to access, or prevents them from accessing, the network. MAC filtering can also be used on a wireless network to prevent certain network devices from accessing the wireless network. MAC addresses are allocated only to hardware devices, not to persons.

Answer C is incorrect. Route filtering is the process by which certain routes are not considered for inclusion in the local route database, or not advertised to one’s neighbors. Route filtering is particularly important for BGP on the global Internet, where it is used for a variety of reasons. Routers have insufficient amounts of main memory to hold the full global BGP table. A simple work-around is to perform input filtering, thus limiting the local route database to a subset of the global table. This can be done by filtering on prefix length (eliminating all routes for prefixes longer than a given value), on AS count, or on some combination of the two. This practice is not recommended, as it can cause suboptimal routing or even communication failures with small networks, and frustrate the traffic-engineering efforts of one’s peers.

Answer A is incorrect. In computer networking, ingress filtering is a technique used to make sure that incoming packets are actually from the networks that they claim to be from. Ingress filtering is a strong and useful security tool and their configurations can be modified for making it a straightforward for its deployment in a border network. Its primary function is to prevent source address spoofing. In ingress filtering process, the packets coming into the network are filtered if the network sending them should not send packets from IP addresses of the originating computer. In order to do ingress filtering, the network needs to know which IP addresses each of the networks it is connected.

Answer D is incorrect. Packet filtering is a method that allows or restricts the flow of specific types of packets to provide security. It analyzes the incoming and outgoing packets and lets them pass or stops them at a network interface based on the source and destination addresses, ports, or protocols. Packet filtering provides a way to define precisely which type of IP traffic is allowed to cross the firewall of an intranet. IP packet filtering is important when users from private intranets connect to public networks, such as the Internet.

Reference. http.//en.wikipediA.org/wiki/MAC_filtering


Leave a Reply