CISSP PRACTICE QUESTIONS – 20211101

Effective CISSP Questions

The Software-Defined Network (SDN) architecture typically divides a network into three planes, e.g., application, control, and data planes. Which of the following is not a primary SDN feature? (Wentz QOTD)
A. Virtualize switches on a commercial off-the-shelf (COTS) hardware platform.
B. Program switches on controllers to drop, flood, or forward packets.
C. Builds a virtual overlay network on top of the existing underlay network.
D. Have applications communicate with the controllers through northbound API.

Kindly be reminded that the suggested answer is for your reference only. It doesn’t matter whether you have the right or wrong answer. What really matters is your reasoning process and justifications.

My suggested answer is A. Virtualize switches on a commercial off-the-shelf (COTS) hardware platform.

Wentz’s book, The Effective CISSP: Security and Risk Management, helps CISSP and CISM aspirants build a solid conceptual security model. It is a tutorial for information security and a supplement to the official study guides for the CISSP and CISM exams and an informative reference for security professionals.

SDN Architecture
SDN Architecture (Credit: Dargahi, Tooska, et al.)

Network Function Virtualization (NFV) is a concept that complements SDN. It concerns virtualizing network functions, such as routing or switching, on a commercial off-the-shelf (COTS) hardware platform. NFV may be confused with the software-defined network (SDN), which separates the data plane from the control plane.

SDN controllers may directly program switches to drop, flood, or forward packets, or build a virtual overlay network on top of the existing underlay network.

Reference


軟件定義網絡 (SDN) 架構通常將網絡劃分為三個平面(plane),例如應用平面、控制平面和數據平面。 以下哪一項不是主要的 SDN 功能? (Wentz QOTD)
A. 在商用現成 (COTS) 硬件平台上虛擬化交換機。
B. 編程讓控制器丟棄、泛洪(flood)或轉發數據包。
C. 在現有的底層(underlay)網絡之上構建一個虛擬的覆蓋(overlay)網絡。
D. 讓應用程序通過北向 API 與控制器通信。



Leave a Reply