New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

GIAC GSEC Exam - Topic 6 Question 31 Discussion

Actual exam question for GIAC's GSEC exam
Question #: 31
Topic #: 6
[All GSEC Questions]

Use sudo to launch Snort with the, /etc /snort /snort.conf file In full mode to generate alerts based on incoming traffic to echo. What is the source IP address of the traffic triggering an alert with a destination port of 156?

Note: Snort Is configured to exit after It evaluates 50 packets.

Show Suggested Answer Hide Answer
Suggested Answer: I

by Lavonna at Aug 06, 2023, 05:45 AM

Limited Time Offer

25%

Off

Get Premium GSEC Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Micaela
3 months ago
I’m surprised they only evaluate 50 packets, seems low!
upvoted 0 times
...
Susana
3 months ago
Wait, are we sure it’s not 192.168.87.68? That seems odd.
upvoted 0 times
...
Alease
4 months ago
Nah, I’m leaning towards 10.11.10.11.
upvoted 0 times
...
Silva
4 months ago
I think it's definitely 10.10.28.19!
upvoted 0 times
...
Sarah
4 months ago
The source IP could be any of those listed.
upvoted 0 times
...
Alease
4 months ago
I feel like I should be able to figure this out, but I keep mixing up the IP addresses. I hope I can recall the right one during the exam!
upvoted 0 times
...
Kent
4 months ago
I vaguely recall that the destination port can help narrow down the source IP. I just can't remember which one it was.
upvoted 0 times
...
Lajuana
5 months ago
I think we had a similar question about identifying source IPs in our last mock exam. I might lean towards option B, but I’m not completely confident.
upvoted 0 times
...
Leonida
5 months ago
I remember we practiced using Snort in class, but I'm not sure how to determine the source IP from the alerts.
upvoted 0 times
...
Raina
5 months ago
This question seems straightforward, I think I can handle it.
upvoted 0 times
...
Brittni
5 months ago
Okay, I've got a strategy for this. The aircraft pilot and customer representative likely have the best understanding of the real-world impacts and detection methods, so they should focus on assessing the detection. The technical experts like the chief software engineer, system architect, and tester should handle the priority assessment since they have the deepest technical knowledge.
upvoted 0 times
...
Chau
5 months ago
Okay, let me walk through this step-by-step. I know that average gross receivables can be calculated as days' sales in receivables times accounts receivable turnover, or as average daily sales times average collection period. I just need to determine which of these options the question is asking for.
upvoted 0 times
...
Coral
5 months ago
I'm a bit confused on this one. Is it asking about the best forecasting method, or the type of demand pattern? I want to make sure I understand the question fully before answering.
upvoted 0 times
...

Save Cancel