GIAC Exam GCED Topic 8 Question 45 Discussion

Actual exam question for GIAC's GCED exam

Question #: 45
Topic #: 8

[All GCED Questions]

When running a Nmap UDP scan, what would the following output indicate?

AThe port may be open on the system or blocked by a firewall

BThe router in front of the host accepted the request and sent a reply

CAn ICMP unreachable message was received indicating an open port

DAn ACK was received in response to the initial probe packet

Show Suggested Answer

Suggested Answer: C

In a case study of a redirect tunnel set up on a router, some anomalies were noticed while watching network traffic with the TCPdump packet sniffer.

Packets going to port 25 (Simple Mail Transfer Protocol [SMTP] used by mail servers and other Mail Transfer Agents [MTAs] to send and receive e-mail) were apparently taking a different network path. The TLs were consistently three less than other destination ports, indicating another three network hops were taken.

Other IP header values listed, such as fragment offset. The acknowledgement number is a TCP, not IP, header field.

by Myra at Jul 12, 2024, 10:40 AM

Limited Time Offer

25%

Off

Get Premium GCED Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Glennis

1 days ago

I think the answer is A) The port may be open on the system or blocked by a firewall.

upvoted 0 times

...