Copy and Edit

CEH: IDS, Firewalls and Honeypots Test 1

Description

CEH Test 1
amandarackham
Quiz by amandarackham, updated more than 1 year ago
amandarackham
Created by amandarackham over 9 years ago
54
1
0

Resource summary

Question 1

Question
Which Snort command will filter for outgoing email requests:
Answer
  • alert tcp any any -> any 21 msg "Email sent"
  • alert tcp any any -> any 25 msg "Email sent"
  • alert tcp any 21 -> any any msg "Email sent"
  • alert tcp any 25 -> any any msg "Email sent"
  • alert tcp any 25 -> any 21 msg "Email sent"

Question 2

Question
Which Snort command will filter for incoming email from the server:
Answer
  • alert tcp any any -> any 21 msg "Email received"
  • alert tcp any any -> any 25 msg "Email received"
  • alert tcp any 21 -> any any msg "Email received"
  • alert tcp any 25 -> any any msg "Email received" "
  • alert tcp any 25 -> any 21 msg "Email received" "

Question 3

Question
Which Snort command will filter for outgoing FTP requests:
Answer
  • alert tcp any any -> any 21 msg "FTP out"
  • alert tcp any any -> any 25 msg "FTP out"
  • alert tcp any 21 -> any any msg "FTP out"
  • alert tcp any 25 -> any any msg "FTP out"
  • alert tcp any 25 -> any 21 msg "FTP out"

Question 4

Question
Which Snort command will filter for incoming FTP response from an FTP server:
Answer
  • alert tcp any any -> any 21 msg "FTP response"
  • alert tcp any any -> any 25 msg "FTP response"
  • alert tcp any 21 -> any any msg "FTP response"
  • alert tcp any 25 -> any any msg "FTP response"
  • alert tcp any 25 -> any 21 msg "FTP response"

Question 5

Question
Which is the following is unlikely to be a port that a client uses to connect to an FTP server:
Answer
  • 21
  • 3100
  • 3110
  • 3111
  • 4444

Question 6

Question
Which Snort command line option is used to define that packets are not logged
Answer
  • -v
  • -c
  • -n
  • -l
  • -k

Question 7

Question
Which Snort command line option is used to read a rules file
Answer
  • -v
  • -c
  • -n
  • -l
  • -k

Question 8

Question
Which Snort command line option is used to run in verbose mode
Answer
  • -v
  • -c
  • -n
  • -l
  • -k

Question 9

Question
Which Snort command line option is used to define the interface number
Answer
  • -v
  • -c
  • -i
  • -l
  • -k

Question 10

Question
Which Snort command line option is used to define the log directory
Answer
  • -v
  • -c
  • -n
  • -l
  • -k
Show full summary Hide full summary

Want to create your own Quizzes for free with GoConqr? Learn more.

Similar

CEH: IDS, Firewalls and Honeypots Test 2
amandarackham
FIREWALLs
nurdiyanazr
NEGOTIATION
swiftfeather
NEGOTIATION_1
swiftfeather
French Intermediate
PatrickNoonan
Psychology subject map
Jake Pickup
F211- Module 1 Cells, exchange and transport
eilish.waite
10 good study habits every student should have
Micheal Heffernan
PHR and SPHR Practice Questions
Elizabeth Rogers8284
Část 4.
Gábi Krsková
Present Simple Vs Present Continuous
Luis Alcaraz
Browse Library