Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

Please a nswer all parts (2-3 lines answer only) for Upvote. 1. a) How can switc

ID: 3903423 • Letter: P

Question

Please answer all parts (2-3 lines answer only) for Upvote.

1. a) How can switch CAM table be used to collect network forensic evidence

b) How can port mirroring be used to collect network forensic evidence

c) What is an "ARP Poisoning" attack?

d) How can Dynamic ARP Inspection (DAI) prevent ARP Poisoning attacks

e) List four operational advantages of using switch VLANs?  

f) What is a VLAN (Virtual Local Area Network?

g) List five or more advantages of a network switch?

h) What is a passsivedns utility?

Explanation / Answer

SOLUTION:-

1 (a):- In switched ethernet atmosphere, switches are used to connect hosts along with the presence of a table that holds the MAC addresses of hosts in network. The transmisison of data packets to destination is done by switches via this table. by this way switch (content-addressable memory) CAM table be used to collect network forensic evidence.

(b):- In port mirroring, configuration of switch is done by copying 1 or more switch port to dedicated port. smooth traffic can be seen via exclusive switch ports by a capture device that is connected to SPAN port.

(c):- In Address Resolution Protocol Poisoning Attack, MAC address is changed by an attacker and also alteration in the ARP cache along with a counterfeit ARP request and reply data packets via attacking ethernet LAN.

(d):- Dynamic ARP Inspection (DAI) is a security mechanism that declines invalid and malevolent ARP packets. Prevention is done by poisoning the ARP caches of its undeclared neighbors on intercepting the traffic by dissocial stations for other stations.

(e):- 1. Better Broadcast Control

2. Increased Network Security

3. Minimization of Costs

4. Transparent on Physical Layer

(f):- VLAN is consists of logically connected devices,servers, work-stations exists in exactly common transmission domain such as single or multiple LANs used for communication.

(g):- 1. permits faster access along with better connection establishment with PCs, routers, and network servers.

2. It removes collisions.

3. It maintains authenticity of data packets due to the concept of store and forward mechanism.

4. Less transmission time due to low latency

5. It can minimize the number of transmission domain.

(h):- By using the passive DNS utility, we can log responses accepted from distinct name server machines via recursive name server machines and further this log data can be imitate to central database server.

======================================================================================

Related Questions

Please Try to answer all the questions 2. Workplace conflict is not always bad.
Question #417811
Please USE AVR ASSEMBLY LANGUAGE FOR Atmeag32....... Thank you very much!!!! Wri
Question #3856741
Please USE PYTHON only to solve the following problem and be sure to follow all
Question #3885277
Please USE only PYTHON to solve the following problem and be sure to follow all
Question #3885281
Please USE only PYTHON to solve the following problem and be sure to follow all
Question #3888100
Please USE only PYTHON to solve the following problem and be sure to follow all
Question #3888843
Please Use C Language! In this assignment, you will load some “Persons” (the str
Question #3715339
Please Use C programming knowledge to do this and follow the instructions in the
Question #3773571
Hire Me For All Your Tutoring Needs
Integrity-first tutoring: clear explanations, guidance, and feedback.
Drop an Email at
drjack9650@gmail.com
Chat Now And Get Quote

Navigate

Previous
Please a clear work 4. If depositand rent are numeric variables, and landlordNam
Next
Please access the financial statements of Starbucks at the following link - http

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.