Users are unable to connect to the web server at IP 192.168.0.20. Which of the following can be
inferred of a firewall that is configured ONLY with the following ACL?
PERMIT TCP ANY HOST 192.168.0.10 EQ 80
PERMIT TCP ANY HOST 192.168.0.10 EQ 443
A.
It implements stateful packet filtering.
B.
It implements bottom-up processing.
C.
It failed closed.
D.
It implements an implicit deny.
Explanation:
All web traffic is permited for HOST 192.168.0.10 over port 80 (HTTP) and port 443 (https)
The question says that another HOSt with an IP 192.168.0.20 cannot connect
So it is a clear case of an implicit deny for ANY Host other than HOST 192.168.0.10
Implicit deny is the default security stance that says if you aren’t specifically granted access or privileges for a resource, you’re denied access by default.
Implicit deny is the default response when an explicit allow or deny isn’t present.
As only traffic to host 192.168.0.10 is permited, it stands to reason that 192.168.0.20 wont be permitted access.
0
0