New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

GAQM CPEH-001 Exam - Topic 5 Question 37 Discussion

Actual exam question for GAQM's CPEH-001 exam
Question #: 37
Topic #: 5
[All CPEH-001 Questions]

Exhibit

Study the log given in the exhibit,

Precautionary measures to prevent this attack would include writing firewall rules. Of these firewall rules, which among the following would be appropriate?

Show Suggested Answer Hide Answer
Suggested Answer: B

You only want your or your ISP's outside DNS to be able to contact your inside DNS. All other traffic should be directed against the outside DNS.


by Kris at May 04, 2022, 05:00 PM

Limited Time Offer

25%

Off

Get Premium CPEH-001 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Amie
4 months ago
Wait, blocking all UDP? That seems risky, right?
upvoted 0 times
...
Dana
4 months ago
Totally agree with option C, it's a solid precaution.
upvoted 0 times
...
Zana
4 months ago
Allowing UDP 53 from DNS to outside is necessary for queries.
upvoted 0 times
...
Herminia
4 months ago
I think blocking all UDP traffic is too extreme.
upvoted 0 times
...
Arlette
5 months ago
Disallowing UDP 53 to the DNS server is a must!
upvoted 0 times
...
Ty
5 months ago
I’m a bit confused about the difference between TCP and UDP in this context. I think disallowing TCP 53 from secondaries is important, but I’m not entirely sure.
upvoted 0 times
...
Danica
5 months ago
I think we practiced a similar question where we had to decide on firewall rules for DNS. I feel like disallowing UDP 53 from outside makes sense, but I can't recall the exact reasoning.
upvoted 0 times
...
Willodean
5 months ago
I remember we discussed how blocking certain UDP traffic can help prevent DNS attacks, but I'm not sure if blocking all UDP is too extreme.
upvoted 0 times
...
Elenore
5 months ago
I remember that allowing UDP 53 from the DNS server to the outside is usually necessary for responses, but I wonder if that could be risky too.
upvoted 0 times
...
Jesus
5 months ago
Based on the information provided, I think option C focuses on the right elements - customer and market relevance supported by operational excellence. That seems like the most logical approach.
upvoted 0 times
...
Annice
5 months ago
I think the key is to take an incremental, collaborative approach to help the organization understand and adopt Scrum effectively.
upvoted 0 times
...
Joanna
5 months ago
Ah, this is a classic firewall configuration question. I've seen these before, so I'm feeling pretty confident I can figure this out.
upvoted 0 times
...

Save Cancel