Name: SCP SC0-402 Exam
Brand: Pass4Success
SKU: SC0-402
Price: 69.00 USD
Availability: InStock
Rating: 5.0 (115 reviews)

Disscuss SCP SC0-402 Topics, Questions or Ask Anything Related

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!

Free SCP SC0-402 Exam Actual Questions

Note: Premium Questions for SC0-402 were last updated On 01-12-2021 (see below)

Question #1

When clients establish a new connections through Firewall-1, what is the order in which the following steps resolve?

A: NAT the packet.

B: Check the incoming packet against the rule base.

C: Check the inbound packet's IP address for evidence of having been spoofed.

D: Check the outgoing packet against the rule base.

E: The OS routes the packet.

F: Check the outbound packet's IP address for evidence of having been spoofed.

AA,C,B,E,D,F

BB,C,E,F,D,A

CB,C,E,F,D,A

DC,B,E,F,D,A

EC,B,E,D,F,A

Reveal Solution

Correct Answer: D

Question #2

You are configuring your new IDS machine, and are creating new rules. You enter the following rule:

Alert tcp any any -> any 23 (msg: ''Telnet Connection Attempt'';)

What is the effect of this rule?

AThis is a logging rule, designed to capture any telnet attempts

BThis is an alert rule, designed to notify you of the use of telnet in either direction

CThis is an alert rule, designed to notify you of the use of telnet in one direction

DThis is a logging rule, designed to notify you of telnet connection attempts

EThis is an alert rule, designed to notify you of attempts to connect from any IP address on port 23 to any IP address and any port on
a remote host.

Reveal Solution

Correct Answer: C

Question #3

You are configuring your new IDS machine, and are creating new rules. You enter the following rule:

Alert tcp any any -> 100100/24 any (msg: ''NULL scan detected''; flags: 0;)

What is the effect of this rule?

AThis is a logging rule, designed to capture NULL scans originating from the 100100/24 network.

BThis is a logging rule, designed to capture NULL scans.

CThis is an alert rule, designed to notify you of NULL scans of the network in either direction.

DThis is an alert rule, designed to notify you of NULL scans of the network in one direction.

EThis is a logging rule, designed to notify you of NULL scans.

Reveal Solution

Correct Answer: D

Question #4

You are configuring your new IDS machine, and are creating new rules. You enter the following rule:

Alert tcp any any -> 100100/24 (msg: ''O/S Fingerprint detected''; flags: S12;)

What is the effect of this rule?

AThis is a logging rule, designed to capture Operating System detection traffic.

BThis is an alert rule, designed to notify you of attempts at learning Operating Systems in one direction.

CThis is an alert rule, designed to notify you of attempts at learning Operating Systems in either direction.

DThis is a logging rule, designed to notify you of Operating System detection attempts.

EThis is a logging rule, designed to capture Operating System detection traffic originating from the 100100/24 network.

Reveal Solution

Correct Answer: B

Question #5

You have just installed a new Intrusion Detection System in your network. You are concerned that there are functions this system

will not be able to perform. What is a reason an IDS cannot manage hardware failures?

AThe IDS may only be able to manage RAID 5 failures.

BThe IDS cannot be programmed to receive SNMP alert messages.

CThe IDS cannot be programmed to receive SNMP trap messages.

DThe IDS cannot be programmed to respond to hardware failures.

EThe IDS may only be able to inform you that an event happened.

Reveal Solution

Correct Answer: E

Unlock Premium SC0-402 Exam Questions with Advanced Practice Test Features:

Select Question Types you want
Set your Desired Pass Percentage
Allocate Time (Hours : Minutes)
Create Multiple Practice tests with Limited Questions
Customer Support

Get Full Access Now

SCP SC0-402 Exam Questions

Free SCP SC0-402 Exam Actual Questions

Note: Premium Questions for SC0-402 were last updated On 01-12-2021 (see below)