PrepAway - Latest Free Exam Questions & Answers

Examine the following log message for IPS and identify the valid responses below.

Examine the following log message for IPS and identify the valid responses below. (Select
all that apply.) 2012-07-01 09:54:28 oid=2 log_id=18433 type=ips subtype=anomaly
pri=alert vd=root severity=”critical” src=”192.168.3.168″ dst=”192.168.3.170″ src_int=”port2″
serial=0 status=”detected” proto=1 service=”icmp” count=1 attack_name=”icmp_flood”
icmp_id=”0xa8a4″ icmp_type=”0x08″ icmp_code=”0x00″ attack_id=16777316 sensor=”1″
ref=”http://www.fortinet.com/ids/VID16777316″ msg=”anomaly: icmp_flood, 51 > threshold
50″

PrepAway - Latest Free Exam Questions & Answers

A.
The target is 192.168.3.170.

B.
The attack was TCP based.

C.
The target is 192.168.3.168.

D.
The attack was detected only.

E.
The attack was detected and blocked.

Explanation:


Leave a Reply

Your email address will not be published. Required fields are marked *