0/24 any (msg: "SYN-FIN scan detected"; flags: SF;) What is the effect of this rule?

seenagapeMarch 3, 2017

You are configuring your new IDS machine, and are creating new rules. You enter the following rule:
Alert tcp any any -> 10.0.10.0/24 any (msg: “SYN-FIN scan detected”; flags: SF;) What is the effect of this rule?

PrepAway - Latest Free Exam Questions & Answers

A.
This is an alert rule, designed to notify you of SYN-FIN scans of the network in one direction.

B.
This is an alert rule, designed to notify you of SYN-FIN scans of the network in either direction.

C.
This is a logging rule, designed to capture SYN-FIN scans.

D.
This is a logging rule, designed to notify you of SYN-FIN scans.

E.
This is an alert rule, designed to notify you of SYN-FIN scans originating from the 10.0.10.0/24 network.

Get 50% Discount on All Your Purchases
at PrepAway.com - Latest Exam Questions

This is ONE TIME OFFER

Enter your email address to receive your 50% off dicount code:

SPECIAL OFFER: GET 50% OFF

Use Discount Code:

EXIN Exam Questions

Free EXIN Study Guide

0/24 any (msg: "SYN-FIN scan detected"; flags: SF;) What is the effect of this rule?

One Comment on “0/24 any (msg: "SYN-FIN scan detected"; flags: SF;) What is the effect of this rule?”

Leave a Reply Cancel reply