Bob has set up three web servers on Windows Server 2003 IIS 6.0. Bob has followed all the recommendations for securing the operating system and IIS. These servers are going to run numerous e-commerce websites that are projected to bring in thousands of dollars a day. Bob is still concerned about the security of these servers because of the potential for financial loss. Bob has asked his company’s firewall administrator to set the firewall to inspect all incoming traffic on ports 80 and 443 to ensure that no malicious data is getting into the network.
Why will this not be possible?
A.
Firewalls cannot inspect traffic at all, they can only block or allow certain ports
B.
Firewalls cannot inspect traffic coming through port 80
C.
Firewalls cannot inspect traffic coming through port 443
D.
Firewalls can only inspect outbound traffic
Explanation:
In order to really inspect traffic and traffic patterns you need an IDS .
I could be wrong but I thought correct answer was C since firewalls cannot inspect the payload of encrypted traffic. But why couldn’t stateful inspection firewalls inspect traffic on port 80?