Valid SY0-501 Dumps shared by ExamDiscuss.com for Helping Passing SY0-501 Exam! ExamDiscuss.com now offer the newest SY0-501 exam dumps, the ExamDiscuss.com SY0-501 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com SY0-501 dumps with Test Engine here:
Access SY0-501 Dumps Premium Version
(715 Q&As Dumps, 35%OFF Special Discount Code: freecram)
<< Prev Question Next Question >>
Question 100/203
The security administrator has installed a new firewall which implements an implicit DENY policy by default.
INSTRUCTIONS:
Click on the firewall and configure it to allow ONLY the following communication.
1. The Accounting workstation can ONLY access the web server on the public network over the default HTTPS port. The accounting workstation should not access other networks.
2. The HR workstation should be restricted to communicate with the financial server ONLY, over the default SCP port
3. The Admin workstation should ONLY be able to access the servers on the secure network over the default TFTP port.
Instructions: The firewall will process the rules in a top-down manner in order as a first match The port number must be typed in and only one port number can be entered per rule Type ANY for all ports. The original firewall configuration can be reset at any time by pressing the reset button. Once you have met the simulation requirements, click save and then Done to submit.
Hot Area:
INSTRUCTIONS:
Click on the firewall and configure it to allow ONLY the following communication.
1. The Accounting workstation can ONLY access the web server on the public network over the default HTTPS port. The accounting workstation should not access other networks.
2. The HR workstation should be restricted to communicate with the financial server ONLY, over the default SCP port
3. The Admin workstation should ONLY be able to access the servers on the secure network over the default TFTP port.
Instructions: The firewall will process the rules in a top-down manner in order as a first match The port number must be typed in and only one port number can be entered per rule Type ANY for all ports. The original firewall configuration can be reset at any time by pressing the reset button. Once you have met the simulation requirements, click save and then Done to submit.
Hot Area:
Correct Answer:
Section: Network Security
Explanation:
Implicit deny is the default security stance that says if you aren't specifically granted access or privileges for a resource, you're denied access by default.
Rule #1 allows the Accounting workstation to ONLY access the web server on the public network over the default HTTPS port, which is TCP port 443.
Rule #2 allows the HR workstation to ONLY communicate with the financial server over the default SCP port, which is TCP Port 22 Rule #3 & Rule #4 allow the Admin workstation to ONLY access the financial and Purchasing servers located on the secure network over the default TFTP port, which is Port 69.
References: Stewart, James Michael, CompTIA Security+ Review Guide, Sybex, Indianapolis, 2014, pp. 26, 44 http://en.wikipedia.org/wiki/List_of_TCP_and_UDP_port_numbers References: Stewart, James Michael, CompTIA Security+ Review Guide, Sybex, Indianapolis, 2014, pp. 26, 44 http://en.wikipedia.org/wiki/List_of_TCP_and_UDP_port_numbers
- Question List (203q)
- Question 1: A security administrator is working with the human resources...
- Question 2: A technician is recommending preventive physical security co...
- Question 3: When building a hosted datacenter. Which of the following is...
- Question 4: A network administrator was provided the following output fr...
- Question 5: A company just implemented a new telework policy that allows...
- Question 6: An organization is looking to build its second head office i...
- Question 7: In a lessons learned report, it is suspected that a well-org...
- Question 8: A security analyst has recently deployed an MDM solution tha...
- Question 9: A company is performing an analysis of the corporate enterpr...
- Question 10: When considering IoT systems, which of the following represe...
- Question 11: An organization is building a new customer services team, an...
- Question 12: A customer calls a technician and needs to remotely connect ...
- Question 13: A company is planning to utilize its legacy desktop systems ...
- Question 14: When conducting a penetration test, a pivot is used to descr...
- Question 15: Joe, an employee, asks a coworker how long ago Ann started w...
- Question 16: An organization is updating its access control standards for...
- Question 17: A security administrator is Implementing a secure method tha...
- Question 18: A technician needs to prevent data loss in a laboratory. The...
- Question 19: After a breach, a company has decided to implement a solutio...
- Question 20: A security analyst received an after-hours alert indicating ...
- Question 21: An Organization requires secure configuration baselines for ...
- Question 22: A government organization recently contacted three different...
- Question 23: Which of the following is the primary reason for implementin...
- Question 24: A NIPS administrator needs to install a new signature to obs...
- Question 25: A security analyst is reviewing the logs from a NGFWs automa...
- Question 26: The application team within a company is asking the security...
- Question 27: A security analyst is implementing mobile device security fo...
- Question 28: An organization has hired a new remote workforce. Many new e...
- Question 29: A security analyst is performing a BIA. The analyst notes th...
- Question 30: A company needs to fix some audit findings related to its ph...
- Question 31: An attacker has gathered information about a company employe...
- Question 32: After being alerted to potential anomalous activity related ...
- Question 33: A user received an SMS on a mobile phone that asked for bank...
- Question 34: A security analyst is determining the point of compromise af...
- Question 35: A security administrator wants to better prepare the inciden...
- Question 36: Which of the following attacks is used to capture the WPA2 h...
- Question 37: A technician wants to implement PKI-based authentication on ...
- Question 38: Which of the following is the security threat a hiring manag...
- Question 39: An organization's research department uses workstations in a...
- Question 40: A technician wants to add wireless guest capabilities to an ...
- Question 41: A buffer overflow can result in:...
- Question 42: A network administrator is brute forcing accounts through a ...
- Question 43: Task: Determine the types of attacks below by selecting an o...
- Question 44: A systems administrator wants to secure a backup environment...
- Question 45: A startup company is using multiple SaaS and laaS platforms ...
- Question 46: Which of the following is the purpose of an industry-standar...
- Question 47: A security administrator is choosing an algorithm to generat...
- Question 48: An analyst is reviewing the following web-server log after r...
- Question 49: An organization is setting up a satellite office and wishes ...
- Question 50: An employee on the Internet facing part of a company's websi...
- Question 51: A security engineer needs to build a solution to satisfy reg...
- Question 52: A company is deploying a wireless network. It is a requireme...
- Question 53: Proprietary information was sent by an employee to a distrib...
- Question 54: Which of the following BEST explains why sandboxing is a bes...
- Question 55: A computer forensics analyst collected a flash drive that co...
- Question 56: A coffee company which operates a chain of stores across a l...
- Question 57: Which of the following concepts ensure ACL rules on a direct...
- Question 58: While testing a new vulnerability scanner, a technician beco...
- Question 59: A company recently updated its website to increase sales. Th...
- Question 60: An internal intranet site is required to authenticate users ...
- Question 61: A company has purchased a new SaaS application and is in the...
- Question 62: A university with remote campuses, which all use different s...
- Question 63: A technician has been asked to document which services are r...
- Question 64: An attacker is able to capture the payload for the following...
- Question 65: A company is implementing a tool to mask all PII when moving...
- Question 66: A company is looking for an all-in-one solution to provide i...
- Question 67: A network technician is setting up a new branch for a compan...
- Question 68: A member of the IR team has identified an infected computer ...
- Question 69: Which of the following terms BEST describes an exploitable v...
- Question 70: The director of information security at a company has recent...
- Question 71: A hospital has received reports from multiple patients that ...
- Question 72: A security administrator wants to determine if a company's w...
- Question 73: A network technician discovered the usernames and passwords ...
- Question 74: A security administrator has been tasked with implementing c...
- Question 75: A highly complex password policy has made it nearly impossib...
- Question 76: An analyst is currently looking at the following output: (Ex...
- Question 77: A security analyst has identified malware that is propagatin...
- Question 78: A security analyst is looking for a solution to help communi...
- Question 79: Which of the following agreement types is a non-contractual ...
- Question 80: A network administrator is implementing multifactor authenti...
- Question 81: Which of the following implements two-factor authentication ...
- Question 82: A government contracting company Issues smartphones lo emplo...
- Question 83: Which of the following documents would provide specific guid...
- Question 84: A systems engineer is configuring a wireless network. The ne...
- Question 85: A Chief Information Officer (CIO) wants to eliminate the num...
- Question 86: A security administrator is adding a NAC requirement for all...
- Question 87: An organization needs to integrate with a third-party cloud ...
- Question 88: Joe, a contractor, is hired by a firm to perform a penetrati...
- Question 89: An incident responder is preparing to acquire images and fil...
- Question 90: In highly secure environments where the risk of malicious ac...
- Question 91: A company uses WPA2-PSK, and it appears there are multiple u...
- Question 92: A small business just recovered from a ransomware attack aga...
- Question 93: A user wants to send a confidential message to a customer to...
- Question 94: A critical web application experiences slow response times d...
- Question 95: A company recently experienced a security incident in which ...
- Question 96: Which of the following BEST describes the purpose of authori...
- Question 97: On which of the following is the live acquisition of data fo...
- Question 98: Which of the following is a risk that is specifically associ...
- Question 99: A security specialist is notified about a certificate warnin...
- Question 100: The security administrator has installed a new firewall whic...
- Question 101: A security analyst is investigating a security breach involv...
- Question 102: An organization discovers that unauthorized applications hav...
- Question 103: A security administrator suspects an employee has been email...
- Question 104: A security analyst is performing a manual audit of captured ...
- Question 105: Which of the following BEST explains how the use of configur...
- Question 106: An attacker is attempting to harvest user credentials on a c...
- Question 107: Which of the following should be implemented to stop an atta...
- Question 108: During a penetration test, Joe, an analyst, contacts the tar...
- Question 109: Employees receive a benefits enrollment email from the compa...
- Question 110: Which of the following is the MOST likely motivation for a s...
- Question 111: A security auditor is reviewing the following output from fi...
- Question 112: Given the following output: Which of the following BEST desc...
- Question 113: A user's laptop is being analyzed Because malware was discov...
- Question 114: An accountant is attempting to log in to the internal accoun...
- Question 115: The Chief Information Officer (CIO) has heard concerns from ...
- Question 116: A systems administrator is increasing the security settings ...
- Question 117: Which of the following BEST explains why a development envir...
- Question 118: Which of the following policies would help an organization i...
- Question 119: Which of the following is a component of multifactor authent...
- Question 120: An organization wants to implement a solution that allows fo...
- Question 121: A security analyst recommends implementing SSL for an existi...
- Question 122: A company recently added a DR site and is redesigning the ne...
- Question 123: Which of the following environments typically hosts the curr...
- Question 124: A developer is creating a new web application on a public cl...
- Question 125: A security analyst is reviewing the password policy for a se...
- Question 126: A cybersecurity administrator needs to add disk redundancy f...
- Question 127: After a security assessment was performed on the enterprise ...
- Question 128: SIMULATION Select the appropriate attack and remediation fro...
- Question 129: A company uses wireless for ail laptops and keeps a very det...
- Question 130: Which of the following algorithms would be used to provide n...
- Question 131: The website of a bank that an organization does business wit...
- Question 132: Which of the following is the proper use of a Faraday cage?...
- Question 133: A security administrator is configuring a RADIUS server for ...
- Question 134: A coding error has been discovered on a customer-facing webs...
- Question 135: An auditor is requiring an organization to perform real-time...
- Question 136: The Chief Executive Officer (CEO) received an email from the...
- Question 137: Which of the following encryption algorithms require one enc...
- Question 138: A company wants to deploy PKI on its Internet-facing website...
- Question 139: Which of the following is a technical preventive control?...
- Question 140: Which of the following has the potential to create a DoS att...
- Question 141: Which of the following would have the GREATEST impact on the...
- Question 142: Which of the following describes the ability of code to targ...
- Question 143: Which of the following serves to warn users against download...
- Question 144: A security engineer at a manufacturing company is implementi...
- Question 145: A network administrator was recently terminated. A few weeks...
- Question 146: A security engineer is analyzing the following line of JavaS...
- Question 147: The Chief financial Officer (CFO) of an insurance company re...
- Question 148: A systems developer needs to provide machine-to-machine inte...
- Question 149: The Chief Information Officer (CIO) has determined the compa...
- Question 150: The president of a company that specializes in military cont...
- Question 151: Ann. a user, reports she is receiving emails that appear to ...
- Question 152: A company has won an important government contract. Several ...
- Question 153: An organization requires that all workstations he issued cli...
- Question 154: A security analyst needs a solution that can execute potenti...
- Question 155: A systems administrator is installing and configuring an app...
- Question 156: A company recently experienced a security breach. The securi...
- Question 157: A security engineer is installing a WAF to protect the compa...
- Question 158: The exploitation of a buffer-overrun vulnerability in an app...
- Question 159: After discovering a security incident and removing the affec...
- Question 160: A security analyst has been asked to implement secure protoc...
- Question 161: Which of the following cloud models is used to share resourc...
- Question 162: A newly purchased corporate WAP needs to be configured in th...
- Question 163: Which of the following is MOST likely happening? (Exhibit)...
- Question 164: A security analyst is assessing a small company's internal s...
- Question 165: A company occupies the third floor of a leased building that...
- Question 166: Which of the following security controls BEST mitigates soci...
- Question 167: An organization is struggling to differentiate threats from ...
- Question 168: An incident response analyst in a corporate security operati...
- Question 169: An employee workstation with an IP address of 204 211.38.211...
- Question 170: A systems administrator wants to replace the process of usin...
- Question 171: A security technician has been given the task of preserving ...
- Question 172: An analyst has determined that a server was not patched and ...
- Question 173: A security administrator plans to conduct a vulnerability sc...
- Question 174: A company help desk as received several reports that employe...
- Question 175: A systems administrator needs to install the same X.509 cert...
- Question 176: Which of the following would provide a safe environment for ...
- Question 177: An organization has created a review process to determine ho...
- Question 178: Which of the following is an example of the second A in the ...
- Question 179: After a ransomware attack. a forensics company needs to revi...
- Question 180: A company has a backup site with equipment on site without a...
- Question 181: Poor inventory control practices can lead to undetected and ...
- Question 182: A security engineer needs to obtain a recurring log of chang...
- Question 183: A Security analyst has received an alert about PII being sen...
- Question 184: Which of the following BEST describes why an air gap is a us...
- Question 185: An organization's Chief Information Officer (CIO) read an ar...
- Question 186: An administrator is disposing of media that contains sensiti...
- Question 187: An organization has decided to purchase an insurance policy ...
- Question 188: A company's IT staff is given the task of securely disposing...
- Question 189: Which of the following is a security consideration for IoT d...
- Question 190: A security analyst is investigating a vulnerability In which...
- Question 191: A threat actor motivated by political goals that is active f...
- Question 192: Staff members of an organization received an email message f...
- Question 193: A common asymmetric algorithm utilizes the user's login name...
- Question 194: An organization handling highly confidential information nee...
- Question 195: A public relations team will be taking a group of guests on ...
- Question 196: An organization recently acquired an ISO 27001 certification...
- Question 197: Company engineers regularly participate in a public Internet...
- Question 198: Fuzzing is used to reveal which of the following vulnerabili...
- Question 199: A security administrator begins assessing a network with sof...
- Question 200: A user attempts to send an email to an external domain and q...
- Question 201: An authorized user is conducting a penetration scan of a sys...
- Question 202: A systems engineer wants to leverage a cloud-based architect...
- Question 203: Given the following: > md5.exe filel.txt > ADIFAB10377...
