CertNexus Exam CFR-410 Topic 9 Question 43 Discussion

Actual exam question for CertNexus's CFR-410 exam

Question #: 43
Topic #: 9

A network security analyst has noticed a flood of Simple Mail Transfer Protocol (SMTP) traffic to internal clients. SMTP traffic should only be allowed to email servers. Which of the following commands would stop this attack? (Choose two.)

Aiptables -A INPUT -p tcp --dport 25 -d x.x.x.x -j ACCEPT

Biptables -A INPUT -p tcp --sport 25 -d x.x.x.x -j ACCEPT

Ciptables -A INPUT -p tcp --dport 25 -j DROP

Diptables -A INPUT -p tcp --destination-port 21 -j DROP

Eiptables -A FORWARD -p tcp --dport 6881:6889 -j DROP

Show Suggested Answer

Suggested Answer: B, E

by Ellen at Sep 10, 2024, 05:46 PM

Limited Time Offer

25%

Off

Get Premium CFR-410 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Dominga

1 days ago

I agree with you, Artie. Command C will drop SMTP traffic and command E will drop traffic on ports commonly used for file sharing.

upvoted 0 times

...

Artie

3 days ago

I think the correct commands to stop the attack are C and E.

upvoted 0 times

...