Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Isc Discussions
exam questions

Exam SSCP All Questions

View all questions & answers for the SSCP exam
Go to Exam

Exam SSCP topic 6 question 240 discussion

Actual exam question from ISC's SSCP
Question #: 240
Topic #: 6
[All SSCP Questions]

Which of the following packets should NOT be dropped at a firewall protecting an organization's internal network?

  • A. Inbound packets with Source Routing option set
  • B. Router information exchange protocols
  • C. Inbound packets with an internal address as the source IP address
  • D. Outbound packets with an external destination IP address
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
Normal outbound traffic has an internal source IP address and an external destination IP address.
Traffic with an internal source IP address should only come from an internal interface. Such packets coming from an external interface should be dropped.
Packets with the source-routing option enabled usually indicates a network intrusion attempt.
Router information exchange protocols like RIP and OSPF should be dropped to avoid having internal routing equipment being reconfigured by external agents.
Source: STREBE, Matthew and PERKINS, Charles, Firewalls 24seven, Sybex 2000, Chapter 10: The Perfect Firewall.
by kmanb at Jan. 12, 2023, 3:07 a.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
gabbinu
6 months, 2 weeks ago
Selected Answer: D
Correct answer is D without doubt
upvoted 1 times
...
CraigB83
12 months ago
why would an internal host need to route via the firewall? C is not correct.
upvoted 1 times
...
kmanb
1 year, 10 months ago
Selected Answer: C
Inbound packets with an internal address as the source IP address. These packets are likely to be generated by internal hosts, and their traffic needs to be allowed to reach other internal hosts and systems. Blocking this traffic would disrupt normal network communications and potentially prevent internal hosts from functioning properly.
upvoted 1 times
bradseth
1 year, 9 months ago
chatgpt again?
upvoted 3 times
...
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel