What are some common risks, threats, and vulnerabilities found in the LAN$-$to$-$WAN domain that must be mitigated through a layered security strategy?

What is an access control list $($ACL$),$ and how is it useful in a layered security strategy?

What is a Bastion Host? Provide an example of when a bastion host should be used and how.

Provide at least two examples of how the enclave requirement to place a firewall at the perimeter can be accomplished

What is the difference between a traditional IP$-$stateful firewall and a deep packet inspection firewall?

How would you monitor for unauthorized management access attempts to sensitive systems?

What is the significance of VLAN $1$ traffic in a Cisco Catalyst LAN switch? Describe the vulnerabilities associated with it if it traverses an unnecessary trunk.

At what logging level should the syslog service be configured on a Cisco router, switch, or firewall device?

As defined in the Network Infrastructure Technology Overview, describe the three layers that can be found in the DISA Enclave Perimeter Layered Security Solution for Internet ingress and egress connections $($for instance, Demilitarized Zone $[$DMZ$]$ or Component Flow$).$

Which device in the Enclave Protection Mechanism Component Flow helps mitigate risks from users violating acceptable use and unwanted Web sites and URL links?

What is the primary objective of the Network Infrastructure STIG as it relates to DoD network infrastructures?