click below
click below
Normal Size Small Size show me how
Network Services
Network Services (2.4)
Term | Definition |
---|---|
DNS | Converts names to IP addresses. Uses port 53. |
DHCP | Assigns IP addresses dynamically to network clients. Uses ports 67 for server and 68 for client. |
Fileshare/File server | Centralized storage of files on a network. - needs to be on 24/7 - accessible from any device with correct login information - Windows uses SMB (Server Message Block, 445) - Apple uses AFP (Apple Filing Protocol) |
Print servers | Connects a network of computers to one/multiple centralized printers. - should be on 24/7 |
Mail servers | Stores incoming mail and sends outgoing mail. - should be on 24/7 |
Syslog | Logs system events from the operating system/network. Consolidated on a central database. - admins need to be able to access these logs |
Web servers | Works with HTTP and HTTPS to display, store, process, and deliver webpages. - Sites are loaded statically or built dynamically in real-time. |
Authentication, authorization, and accounting (AAA) server | Centralized management for passwords and usernames to access resources - used for enterprise services, NOT home networks |
Spam gateways | Separate gateway in network that scans incoming mail for spam before it's sent to the internal mail server. |
Unified threat management (UTM) | A consolidated all-in-one security appliance that can: - perform inspections for URL/content/malware/spam - can let you connect to a WAN - can double as routers/switches/firewalls/bandwidth shapers/VPN endpoints |
Balance loaders | Distributes load for servers to avoid downtime - if one server is unresponsive, will remove that server and continue operating with all the others |
Proxy servers | Sits in the middle of conversations for security - client requests proxy - proxy performs the request - proxy checks the response for maliciousness - proxy provides the result back to the cilent |
Supervisory control and data acquisition (SCADA) | Controls/manages large industrial equipment - very important, requires extra security - should be on a segmented network away from non-SCADA systems for security |
Legacy systems | Old/hard to troubleshoot, but they may still be used because they function well for a specific important task |
Embedded systems | Purpose-build devices; don't have access to the OS, b/c they're only built to do one thing - for example, a clock-in/clock-out device at work |
IoT Devices | Regular appliances starting to be found on networks - extremely important, should be on a segmented network away from non-IoT devices, need extra security |