[Free] 2017(Sep) EnsurePass Testinsides GIAC GCFW Dumps with VCE and PDF 141-150

Ensurepass.com : Ensure you pass the IT Exams
2017 Sep GIAC Official New Released GCFW
100% Free Download! 100% Pass Guaranteed!
http://www.EnsurePass.com/GCFW.html

GIAC Certified Firewall Analyst

Question No: 141 – (Topic 1)

John works as a Security Manager for Gentech Inc. He uses an IDP engine to detect the type of interactive traffic produced during an attack in which the attacker wants to install the mechanism on a host system that facilitates the unauthorized access and breaks the system confidentiality.

Which of the following rulebases will he use to accomplish the task?

  1. Backdoor rulebase

  2. Traffic Anomalies rulebase

  3. Exempt rulebase

  4. SYN Protector rulebase

Answer: A

Question No: 142 – (Topic 1)

You work as a Network Administrator for Tech Perfect Inc. The company has a TCP/IP- based routed network. You have recently come to know about the Slammer worm, which attacked computers in 2003 and doubled the number of infected hosts every 9 seconds or so. Slammer infected 75000 hosts in the first 10 minutes of the attack. To mitigate such security threats, you want to configure security tools on the network. Which of the following tools will you use?

  1. Intrusion Prevention Systems

  2. Firewall

  3. Anti-x

  4. Intrusion Detection Systems

Answer: A

Question No: 143 – (Topic 1)

Which of the following monitors program activities and modifies malicious activities on a system?

  1. Back door

  2. NIDS

  3. HIDS

  4. RADIUS

Answer: C

Question No: 144 – (Topic 1)

You work as a Network Administrator for TechPerfect Inc. The company has a corporate intranet setup.

A router is configured on your network to connect outside hosts to the internetworking. For security, you want to prevent outside hosts from pinging to the hosts on the internetwork. Which of the following steps will you take to accomplish the task?

  1. Block the ICMP protocol through ACL.

  2. Block the TCP protocol through ACL.

  3. Block the IPv6 protocol through ACL.

  4. Block the UDP protocol through ACL.

Answer: A

Topic 2, Volume B

Question No: 145 – (Topic 2)

Which of the following are packet filtering tools for the Linux operating system? Each correct answer represents a complete solution. Choose all that apply.

  1. Zone Alarm

  2. BlackICE

  3. IPFilter

  4. IPTables

Answer: C,D

Question No: 146 – (Topic 2)

Which of the following tools is an open source protocol analyzer that can capture traffic in real time?

  1. Netresident

  2. Snort

  3. Wireshark

  4. NetWitness

Answer: C

Question No: 147 – (Topic 2)

Which of the following tools can be used for OS fingerprinting?

  1. netstat

  2. nmap

  3. DIG

  4. whois

Answer: B

Question No: 148 – (Topic 2)

You work as a Security Administrator for Tech Perfect Inc. The company has a switched network. You have configured tcpdump in the network which can only see traffic addressed to itself and broadcast traffic. What will you do when you are required to see all traffic of the network?

  1. Connect the sniffer device to a Remote Switched Port Analyzer (RSPAN) port.

  2. Configure VLAN Access Control List (VACL).

  3. Configure Network Access Control (NAC).

  4. Connect the sniffer device to a Switched Port Analyzer (SPAN) port.

Answer: D

Question No: 149 – (Topic 2)

Sam works as a Security Manager for GenTech Inc. He has been assigned a project to detect reconnoitering activities. For this purpose, he has deployed a system in the network that attractsthe attention of an attacker. Which of the following rulebases will he use to accomplish the task?

  1. Network Honeypot rulebase

  2. Exempt rulebase

  3. Backdoor rulebase

  4. SYN Protector rulebase

Answer: A

Question No: 150 – (Topic 2)

Which of the following applications cannot proactively detect anomalies related to a computer?

  1. NIDS

  2. Anti-virus scanner

  3. Firewall installed on the computer

  4. HIDS

Answer: A

100% Ensurepass Free Download!
Download Free Demo:GCFW Demo PDF
100% Ensurepass Free Guaranteed!
Download 2017 EnsurePass GCFW Dumps

EnsurePass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
PDF VCE Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

2017 EnsurePass IT Certification PDF and VCE

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.