PrepAway - Latest Free Exam Questions & Answers

Which of the following packets should NOT be dropped at…

Which of the following packets should NOT be dropped at a firewall protecting an organization’s internal
network?

PrepAway - Latest Free Exam Questions & Answers

A.
Inbound packets with Source Routing option set

B.
Router information exchange protocols

C.
Inbound packets with an internal address as the source IP address

D.
Outbound packets with an external destination IP address

Explanation:
Internal users access the internet will create outbound packets with external IP addresses. These legit packets
should not be dropped.
Incorrect Answers:
A: Firewalls do not drop packet based on routing options.
B: Firewalls do not drop packet based on routing protocol information.
C: Inbound packets should have an external source address. If the inbound packet has an internal source
address it must be dropped.

Harris, Shon, All In One CISSP Exam Guide, 6th Edition, McGraw-Hill, New York, 2013, p. 630


Leave a Reply