CEH: IDS, Firewalls and Honeypots Test 1

Question 1 of 10

Medal-premium 1

Which Snort command will filter for outgoing email requests:

Select one of the following:

  • alert tcp any any -> any 21 msg "Email sent"

  • alert tcp any any -> any 25 msg "Email sent"

  • alert tcp any 21 -> any any msg "Email sent"

  • alert tcp any 25 -> any any msg "Email sent"

  • alert tcp any 25 -> any 21 msg "Email sent"

Question 2 of 10

Medal-premium 1

Which Snort command will filter for incoming email from the server:

Select one of the following:

  • alert tcp any any -> any 21 msg "Email received"

  • alert tcp any any -> any 25 msg "Email received"

  • alert tcp any 21 -> any any msg "Email received"

  • alert tcp any 25 -> any any msg "Email received" "

  • alert tcp any 25 -> any 21 msg "Email received" "

Question 3 of 10

Medal-premium 1

Which Snort command will filter for outgoing FTP requests:

Select one of the following:

  • alert tcp any any -> any 21 msg "FTP out"

  • alert tcp any any -> any 25 msg "FTP out"

  • alert tcp any 21 -> any any msg "FTP out"

  • alert tcp any 25 -> any any msg "FTP out"

  • alert tcp any 25 -> any 21 msg "FTP out"

Question 4 of 10

Medal-premium 1

Which Snort command will filter for incoming FTP response from an FTP server:

Select one of the following:

  • alert tcp any any -> any 21 msg "FTP response"

  • alert tcp any any -> any 25 msg "FTP response"

  • alert tcp any 21 -> any any msg "FTP response"

  • alert tcp any 25 -> any any msg "FTP response"

  • alert tcp any 25 -> any 21 msg "FTP response"

Question 5 of 10

Medal-premium 1

Which is the following is unlikely to be a port that a client uses to connect to an FTP server:

Select one of the following:

  • 21

  • 3100

  • 3110

  • 3111

  • 4444

Question 6 of 10

Medal-premium 1

Which Snort command line option is used to define that packets are not logged

Select one of the following:

  • -v

  • -c

  • -n

  • -l

  • -k

Question 7 of 10

Medal-premium 1

Which Snort command line option is used to read a rules file

Select one of the following:

  • -v

  • -c

  • -n

  • -l

  • -k

Question 8 of 10

Medal-premium 1

Which Snort command line option is used to run in verbose mode

Select one of the following:

  • -v

  • -c

  • -n

  • -l

  • -k

Question 9 of 10

Medal-premium 1

Which Snort command line option is used to define the interface number

Select one of the following:

  • -v

  • -c

  • -i

  • -l

  • -k

Question 10 of 10

Medal-premium 1

Which Snort command line option is used to define the log directory

Select one of the following:

  • -v

  • -c

  • -n

  • -l

  • -k

Icon_fullscreen

CEH: IDS, Firewalls and Honeypots Test 1

amandarackham
Quiz by , created over 1 year ago

CEH Test 1

Eye 5
Pin 0
Balloon-left 0
Tags
amandarackham
Created by amandarackham over 1 year ago
Close