What should you do?

You are the network administrator for your company.The network consists of a single Active Directory domain.The domain contains 25 Windows Server 2003 computers and 6,000 Windows XP Professional computers.
The written company security policy states that network traffic to Web servers must be audited on a regular basis.A server named Server1 is configured as a Web server on the company’s intranet.You install Network Monitor Tools from a Windows Server 2003 product CD-ROM on Server1.
You run Network Monitor on Server1 for three hours.When you stop the network capture, you see that Network Monitor captured over 40,000 frames.As you look at the captured frames, you notice that an extremely large number of TCP connection requests have all come from the 131.107.0.1 IP address.
In Network Monitor, you need to view only the frames for network traffic that are captured between Server1 and the 131.107.0.1 IP address.
What should you do?

You are the network administrator for your company.The network consists of a single Active Directory domain.The domain contains 25 Windows Server 2003 computers and 6,000 Windows XP Professional computers.
The written company security policy states that network traffic to Web servers must be audited on a regular basis.A server named Server1 is configured as a Web server on the company’s intranet.You install Network Monitor Tools from a Windows Server 2003 product CD-ROM on Server1.
You run Network Monitor on Server1 for three hours.When you stop the network capture, you see that Network Monitor captured over 40,000 frames.As you look at the captured frames, you notice that an extremely large number of TCP connection requests have all come from the 131.107.0.1 IP address.
In Network Monitor, you need to view only the frames for network traffic that are captured between Server1 and the 131.107.0.1 IP address.
What should you do?

A.
Create an Address Capture filter for all network traffic between Server1 and the 131.107.0.1 IP address.

B.
Create a Find Frame Expression filter for network traffic captured between Server1 and the 131.107.0.1 IP address.

C.
Create an Address Display filter for all network traffic captured between Server1 and the 131.107.0.1 IP address.

D.
Create a Pattern Match capture trigger for the 131.107.0.1 IP address.



Leave a Reply 0

Your email address will not be published. Required fields are marked *