Which of the following ACLs provides the BEST protection against the above attack and any further attacks from the same IP, while minimizing service interruption?

– by 3

A security analyst is reviewing the following packet capture of an attack directed at a company’s server located in the DMZ:

Which of the following ACLs provides the BEST protection against the above attack and any further attacks from the same IP, while minimizing service interruption?
A. DENY TCO From ANY to 172.31.64.4
B. Deny UDP from 192.168.1.0/24 to 172.31.67.0/24
C. Deny IP from 192.168.1.10/32 to 0.0.0.0/0
D. Deny TCP from 192.168.1.10 to 172.31.67.4

How To Pass SY0-601 Exam?

CompTIA SY0-601 PDF dumps.

High quality SY0-601 pdf and software. VALID exam to help you pass.
comptia-exams

3 thoughts on “Which of the following ACLs provides the BEST protection against the above attack and any further attacks from the same IP, while minimizing service interruption?

  1. The answer is NOT C. The key is “any further attacks.” but also “from the same IP. D will limit attacks from 192.168.1.10 to the single IP and minimize service interruption.

    1
    1
    Reply

  2. The answer is C. The key is “any further attacks.” D will only limit attacks from 192.168.1.10 to the single IP. The question states “ANY FURTHER attacks.”

    2
    1
    Reply

    1. but it also says “while minimizing service interruption”. C would basically cut off your whole service. So I guess it’s D

      Reply

Leave a Reply

Your email address will not be published. Required fields are marked *


The reCAPTCHA verification period has expired. Please reload the page.