Which is the most plausible explanation for this situation?

Consider the following firewall rules:
Incoming traffic:
TCP Port 25: Denied
TCP Port 139: Denied
UDP Port 137: Denied
UDP Port 138: Denied
ICMP echo request: Denied
I CMP echo reply: Denied
Outgoing traffic:
TCP Ports 1024 through 65,535 to port 80: Denied
ICMP echo request: Denied
ICMP echo reply: Denied
TCP Port 139: Denied
UDP Port 137: Denied
UDP Port 138: Denied

All company production servers reside behind the corporate firewall. However, you discover that
the Web server performance is very low. After sniffing the traffic to the Web server, you learn that
the Web server is experiencing a distributed denial-of-service attack in which millions of ping
packets are being directed at the server. Which is the most plausible explanation for this situation?

Consider the following firewall rules:
Incoming traffic:
TCP Port 25: Denied
TCP Port 139: Denied
UDP Port 137: Denied
UDP Port 138: Denied
ICMP echo request: Denied
I CMP echo reply: Denied
Outgoing traffic:
TCP Ports 1024 through 65,535 to port 80: Denied
ICMP echo request: Denied
ICMP echo reply: Denied
TCP Port 139: Denied
UDP Port 137: Denied
UDP Port 138: Denied

All company production servers reside behind the corporate firewall. However, you discover that
the Web server performance is very low. After sniffing the traffic to the Web server, you learn that
the Web server is experiencing a distributed denial-of-service attack in which millions of ping
packets are being directed at the server. Which is the most plausible explanation for this situation?

A.
There is a flaw in the firewall rule set.

B.
The attack is being conducted from an internal host.

C.
The Web server has been infected with a Trojan horse.

D.
The firewall is not configured to block ICMP packets generated by the ping command.

Explanation:



Leave a Reply 0

Your email address will not be published. Required fields are marked *