Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

GIAC GSNA Exam - Topic 2 Question 69 Discussion

Actual exam question for GIAC's GSNA exam
Question #: 69
Topic #: 2
[All GSNA Questions]

You work as a Network Administrator for Techpearl Inc. You are configuring the rules for the firewall of the company. You need to allow internal users to access secure external websites. Which of the following firewall rules will you use to accomplish the task?

Show Suggested Answer Hide Answer
Suggested Answer: D

The TCP 172.16.1.0/24 any any 443 HTTPs permit rule is used to allow internal users to access secure external websites.

Answer A is incorrect. The TCP 172.16.1.0/24 any any 80 HTTP permit rule is used to allow internal users to access external

websites (secure & unsecure both).

Answer C is incorrect. The TCP 172.16.1.0/24 any any 80 HTTP deny rule is used to deny internal users to access external websites.

Answer B is incorrect. The TCP 172.16.1.0/24 any any 25 SMTP permit rule is used to allow internal mail servers to deliver mails to

external mail servers.


by Tracey at Apr 07, 2025, 02:53 AM

Limited Time Offer

25%

Off

Get Premium GSNA Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Celia
5 months ago
Not sure about that, isn't 80 just for HTTP?
upvoted 0 times
...
Renea
5 months ago
Definitely Rule D for HTTPS access!
upvoted 0 times
...
Marjory
6 months ago
Wait, why is SMTP even an option here?
upvoted 0 times
...
Annamae
6 months ago
Rule D is the one you need for secure sites!
upvoted 0 times
...
Raul
6 months ago
I think Rule A is better for general web access.
upvoted 0 times
...
Kassandra
6 months ago
I’m a bit confused about the SMTP option. I know it’s for email, but it doesn’t seem relevant here. I guess we should focus on HTTP and HTTPS.
upvoted 0 times
...
Fairy
6 months ago
I think we practiced a similar question where we had to differentiate between HTTP and HTTPS. If I recall correctly, option D makes the most sense for secure access.
upvoted 0 times
...
Walton
7 months ago
I'm not entirely sure, but I feel like allowing port 80 would only cover non-secure sites. Shouldn't we be looking at port 443 for secure access?
upvoted 0 times
...
Bettye
7 months ago
I remember we discussed that HTTP is for regular web traffic, but secure sites use HTTPS, right? So, I think option D might be the one we need.
upvoted 0 times
...
Josefa
7 months ago
I'm a bit confused by the different options. I'll need to carefully review the details of each firewall rule to determine the best one for this scenario.
upvoted 0 times
...
Alpha
7 months ago
I'm feeling confident about this one. The question is clear, and option D seems to be the right choice to allow secure external website access for the internal users.
upvoted 0 times
...
Casey
8 months ago
Okay, I've got this. The question is asking to allow internal users to access secure external websites, so I'll go with option D to permit TCP traffic on port 443 for HTTPS.
upvoted 0 times
...
Orville
8 months ago
Hmm, I'm a bit unsure about this one. I need to double-check the different firewall rule options and make sure I understand the requirements correctly.
upvoted 0 times
...
Juliann
8 months ago
This looks like a straightforward firewall configuration question. I think the key is to identify the correct protocol and port for accessing secure external websites.
upvoted 0 times
...
Janine
1 year ago
Option C is just denying all HTTP traffic, which isn't what we want. Gotta go with D to permit the HTTPS connections.
upvoted 0 times
...
Carol
1 year ago
Haha, option B for SMTP? That's a funny one. I don't think we're trying to send emails through the firewall here.
upvoted 0 times
Elli
11 months ago
C) TCP 172.16.1.0/24 any any 80 HTTP deny
upvoted 0 times
...
Shanda
11 months ago
B) TCP 172.16.1.0/24 any any 25 SMTP permit
upvoted 0 times
...
Charlette
12 months ago
A) TCP 172.16.1.0/24 any any 80 HTTP permit
upvoted 0 times
...
...
Telma
1 year ago
Option A looks good too, but it's specifically for HTTP on port 80, not HTTPS. I'd go with D to be on the safe side.
upvoted 0 times
Annabelle
11 months ago
Yes, it's important to prioritize security when configuring firewall rules for accessing external websites.
upvoted 0 times
...
Sena
12 months ago
Option A looks good too, but it's specifically for HTTP on port 80, not HTTPS. I'd go with D to be on the safe side.
upvoted 0 times
...
Elvis
12 months ago
I agree, option D specifies HTTPS on port 443 which is more secure than HTTP on port 80.
upvoted 0 times
...
Eulah
1 year ago
I think option D is the best choice for allowing access to secure external websites.
upvoted 0 times
...
...
Britt
1 year ago
But allowing access to secure external websites requires using port 443 for HTTPS, so D) makes more sense.
upvoted 0 times
...
Rosenda
1 year ago
Hmm, I think option D is the correct choice here. Allowing access to secure external websites using HTTPS on port 443 seems like the appropriate firewall rule.
upvoted 0 times
Lina
1 year ago
User 2: Yeah, HTTPS on port 443 is the way to go for secure connections.
upvoted 0 times
...
Charolette
1 year ago
User 1: I agree, option D is the best choice for allowing access to secure external websites.
upvoted 0 times
...
...
Donette
1 year ago
I disagree, I believe the correct answer is A) TCP 172.16.1.0/24 any any 80 HTTP permit.
upvoted 0 times
...
Britt
1 year ago
I think the answer is D) TCP 172.16.1.0/24 any any 443 HTTPs permit.
upvoted 0 times
...

Save Cancel