Copy and Edit

CEH: IDS, Firewalls and Honeypots Test 1

Description

CEH Test 1
amandarackham
Quiz by amandarackham, updated more than 1 year ago
amandarackham
Created by amandarackham over 9 years ago
54
1
0

Resource summary

Question 1

Question
Which Snort command will filter for outgoing email requests:
Answer
  • alert tcp any any -> any 21 msg "Email sent"
  • alert tcp any any -> any 25 msg "Email sent"
  • alert tcp any 21 -> any any msg "Email sent"
  • alert tcp any 25 -> any any msg "Email sent"
  • alert tcp any 25 -> any 21 msg "Email sent"

Question 2

Question
Which Snort command will filter for incoming email from the server:
Answer
  • alert tcp any any -> any 21 msg "Email received"
  • alert tcp any any -> any 25 msg "Email received"
  • alert tcp any 21 -> any any msg "Email received"
  • alert tcp any 25 -> any any msg "Email received" "
  • alert tcp any 25 -> any 21 msg "Email received" "

Question 3

Question
Which Snort command will filter for outgoing FTP requests:
Answer
  • alert tcp any any -> any 21 msg "FTP out"
  • alert tcp any any -> any 25 msg "FTP out"
  • alert tcp any 21 -> any any msg "FTP out"
  • alert tcp any 25 -> any any msg "FTP out"
  • alert tcp any 25 -> any 21 msg "FTP out"

Question 4

Question
Which Snort command will filter for incoming FTP response from an FTP server:
Answer
  • alert tcp any any -> any 21 msg "FTP response"
  • alert tcp any any -> any 25 msg "FTP response"
  • alert tcp any 21 -> any any msg "FTP response"
  • alert tcp any 25 -> any any msg "FTP response"
  • alert tcp any 25 -> any 21 msg "FTP response"

Question 5

Question
Which is the following is unlikely to be a port that a client uses to connect to an FTP server:
Answer
  • 21
  • 3100
  • 3110
  • 3111
  • 4444

Question 6

Question
Which Snort command line option is used to define that packets are not logged
Answer
  • -v
  • -c
  • -n
  • -l
  • -k

Question 7

Question
Which Snort command line option is used to read a rules file
Answer
  • -v
  • -c
  • -n
  • -l
  • -k

Question 8

Question
Which Snort command line option is used to run in verbose mode
Answer
  • -v
  • -c
  • -n
  • -l
  • -k

Question 9

Question
Which Snort command line option is used to define the interface number
Answer
  • -v
  • -c
  • -i
  • -l
  • -k

Question 10

Question
Which Snort command line option is used to define the log directory
Answer
  • -v
  • -c
  • -n
  • -l
  • -k
Show full summary Hide full summary

Want to create your own Quizzes for free with GoConqr? Learn more.

Similar

CEH: IDS, Firewalls and Honeypots Test 2
amandarackham
FIREWALLs
nurdiyanazr
NEGOTIATION
swiftfeather
NEGOTIATION_1
swiftfeather
Biology Unit 1
anna.mat1997
AQA Biology A2 Unit 4 Respiration
Gemma Lucinda
AQA - English Language Unit 1
Alice Love
Polymers, alkanes and alkenes
amira-2000
History- Medicine through time key figures
gemma.bell
AS level Maths Equations to Remember
Gurdev Manchanda
Dr Jekyll and Mr Hyde THEMES
deanakentish
Browse Library