Which IDS guideline should be followed according to SAFE SMR?

networkmanagersJuly 21, 2012

PrepAway - Latest Free Exam Questions & Answers

A.
Use UDP resets more often than shunning, because UDP traffic is more difficult to spoof.

B.
Use TCP resets more often than shunning, because TCP traffic is more difficult to spoof.

C.
Use TCP resets no longer than 15 minutes.

D.
Use UDP resets no longer than 15 minutes.

Explanation:
As the name implies, TCP resets operate only on TCP traffic and terminate an active attack by sending TCP reset messages to the attacking and attacked host. Because TCP traffic is more difficult to spoof, you should consider using TCP resets more often than shunning.
REF;Safe white papers; 8
SAFE: Extending the Security Blueprint to Small, Midsize, and Remote-User Networks

Get 50% Discount on All Your Purchases
at PrepAway.com - Latest Exam Questions

This is ONE TIME OFFER

Enter your email address to receive your 50% off dicount code:

SPECIAL OFFER: GET 50% OFF

Use Discount Code:

Cisco Exam Questions

Free Cisco Study Guide

Which IDS guideline should be followed according to SAFE SMR?

Leave a Reply Cancel reply