PrepAway - Latest Free Exam Questions & Answers

Author: seenagape

which three steps must be completed to complete your task?

Leave a comment

A server system runs the Solaris 10 OS with the Solaris IP Filter software installed. You enable the Solaris IP Filter software for the IPv4 addresses on the eri0 interface and start the Solaris IP Filter software without rebooting.

You create a rule set for Solaris IP Filter in /etc/ipf/ipf.conf. The interface eri0 is unplumbed.

Given the IP address 10.19.24.1 for the interface eri0, which three steps must be completed to complete your task? (Choose three.)

What is the cause of this problem?

Leave a comment

You configure Solaris IP Filter on a Solaris system named myhost as a host-based firewall.

While attempting to telnet to myhost from another host named remotehost, you receive this error:

$ telnet myhost
Trying 192.168.1.100…

telnet: Unable to connect to remote host: Connection timed out

You run netstat -a on myhost and find this entry :

Local Address Remote Address Swind Send-Q Rwind Recv-Q State
————– ————————— ——— ———– ———- ———– ————
myhost.23 remotehost.39846 0 0 49640 0 SYN_RCVD

What is the cause of this problem?

Why is this traffic NOT being blocked?

Leave a comment

You are attempting to filter all UDP network traffic between two Solaris zones on the same machine.

Zone 1 is using the IP address 192.168.84.1 on the interface ce0:1 Zone 2 is using the IP address 192.168.84.2 on the interface ce0:2

The Solaris IP Filter rules are in effect :

block in quick proto udp from 192.168.84.1 to 192.168.84.2 block in quick proto udp from 192.168.84.2 to 192.168.84.1

With these rules in effect, UDP traffic still passes between the two zones. Why is this traffic NOT being blocked?

Which UNIX command must be executed to enable Solaris IP Filter firewall for the hme0 interface without reboot

Leave a comment

The default configuration of the Solaris 10 OS has packet filtering disabled on all network interfaces. To enable packet filtering on the hme0 interface of a running system, the
related hme line in the /etc/ipf/pfil.ap file must be uncommented:

# IP Filter pfil autopush setup
#
# See autopush(1M) manpage for more information.

#
# Format of the entries in this file is:
#
#major minor lastminor modules

#le -1 0 pfil
#qe -1 0 pfil
hme -1 0 pfil
#qfe -1 0 pfil
#eri -1 0 pfil
#ce -1 0 pfil
#bge -1 0 pfil
#be -1 0 pfil
#vge -1 0 pfil
#ge -1 0 pfil
#nf -1 0 pfil
#fa -1 0 pfil

#ci -1 0 pfil
#el -1 0 pfil
#ipdptp -1 0 pfil
#lane -1 0 pfil
#dmfe -1 0 pfil

Which UNIX command must be executed to enable Solaris IP Filter firewall for the hme0 interface without rebooting the system?

Which three rules should be included in the Solaris IP Filter configuration?

Leave a comment

A new system is being installed with multiple interfaces configured and IP Forwarding enabled. One interface, ge0, connects to the primary company LAN. Another interface, ge1, connects to a LAN dedicated to administration of the company’s servers.

Given:

ge0 IP Address = 10.0.0.25/32
ge1 IP Address = 192.168.1.25/32
Admin network = 192.168.1.0/24
Primary network = 10.0.0.0/24

Solaris IP Filter firewall must be configured in a way that:

1- Systems on the admin network can reach the primary network.

2- The system itself has to be reached using ssh from all systems on the admin network.

3- Systems on the primary network cannot reach any systems on the admin network.

Which three rules should be included in the Solaris IP Filter configuration? (Choose three.)


Page 53 of 108« First...102030...5152535455...607080...Last »