Network Security Architecture Questions

Fundamentals and design of network security including the Transmission Control Protocol and Internet Protocol stack, Domain Name System, Hypertext Transfer Protocol and Hypertext Transfer Protocol Secure, and common network protocols and services that impact security. Covers core network security controls such as firewalls, intrusion detection system and intrusion prevention system, network segmentation, virtual local area network design, access control lists, network access control and micro segmentation, secure tunneling and Virtual Private Networks, and secure protocol configuration such as Transport Layer Security and Internet Protocol Security. Includes threat models for network based attacks including man in the middle attacks, Domain Name System poisoning, reconnaissance, lateral movement across network boundaries, and distributed denial of service, along with detection, monitoring, logging, and incident response practices. Also covers architecture level patterns such as segmentation and zero trust networking, secure deployment of network appliances, and trade offs between performance and security.