Chapter 2Technologies and Tools

THE COMPTIA SECURITY+ EXAM SY0-501 TOPICS COVERED IN THIS CHAPTER INCLUDE THE FOLLOWING:

  • images 2.1 Install and configure network components, both hardware- and software-based, to support organizational security.
    • Firewall
      • ACL
      • Application-based vs. network-based
      • Stateful vs. stateless
      • Implicit deny
    • VPN concentrator
      • Remote access vs. site-to-site
      • IPSec
        • Tunnel mode
        • Transport mode
        • AH
        • ESP
      • Split tunnel vs. full tunnel
      • TLS
      • Always-on VPN
    • NIPS/NIDS
      • Signature-based
      • Heuristic/behavioral
      • Anomaly
      • Inline vs. passive
      • In-band vs. out-of-band
      • Rules
      • Analytics
        • False positive
        • False negative
    • Router
      • ACLs
      • Antispoofing
    • Switch

Get CompTIA Security+ Practice Tests now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.