New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

GIAC GSNA Exam - Topic 2 Question 69 Discussion

Actual exam question for GIAC's GSNA exam
Question #: 69
Topic #: 2
[All GSNA Questions]

You work as a Network Administrator for Techpearl Inc. You are configuring the rules for the firewall of the company. You need to allow internal users to access secure external websites. Which of the following firewall rules will you use to accomplish the task?

Show Suggested Answer Hide Answer
Suggested Answer: D

The TCP 172.16.1.0/24 any any 443 HTTPs permit rule is used to allow internal users to access secure external websites.

Answer A is incorrect. The TCP 172.16.1.0/24 any any 80 HTTP permit rule is used to allow internal users to access external

websites (secure & unsecure both).

Answer C is incorrect. The TCP 172.16.1.0/24 any any 80 HTTP deny rule is used to deny internal users to access external websites.

Answer B is incorrect. The TCP 172.16.1.0/24 any any 25 SMTP permit rule is used to allow internal mail servers to deliver mails to

external mail servers.


by Tracey at Apr 07, 2025, 02:53 AM

Limited Time Offer

25%

Off

Get Premium GSNA Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Celia
2 months ago
Not sure about that, isn't 80 just for HTTP?
upvoted 0 times
...
Renea
2 months ago
Definitely Rule D for HTTPS access!
upvoted 0 times
...
Marjory
2 months ago
Wait, why is SMTP even an option here?
upvoted 0 times
...
Annamae
3 months ago
Rule D is the one you need for secure sites!
upvoted 0 times
...
Raul
3 months ago
I think Rule A is better for general web access.
upvoted 0 times
...
Kassandra
3 months ago
I’m a bit confused about the SMTP option. I know it’s for email, but it doesn’t seem relevant here. I guess we should focus on HTTP and HTTPS.
upvoted 0 times
...
Fairy
3 months ago
I think we practiced a similar question where we had to differentiate between HTTP and HTTPS. If I recall correctly, option D makes the most sense for secure access.
upvoted 0 times
...
Walton
4 months ago
I'm not entirely sure, but I feel like allowing port 80 would only cover non-secure sites. Shouldn't we be looking at port 443 for secure access?
upvoted 0 times
...
Bettye
4 months ago
I remember we discussed that HTTP is for regular web traffic, but secure sites use HTTPS, right? So, I think option D might be the one we need.
upvoted 0 times
...
Josefa
4 months ago
I'm a bit confused by the different options. I'll need to carefully review the details of each firewall rule to determine the best one for this scenario.
upvoted 0 times
...
Alpha
4 months ago
I'm feeling confident about this one. The question is clear, and option D seems to be the right choice to allow secure external website access for the internal users.
upvoted 0 times
...
Casey
4 months ago
Okay, I've got this. The question is asking to allow internal users to access secure external websites, so I'll go with option D to permit TCP traffic on port 443 for HTTPS.
upvoted 0 times
...
Orville
5 months ago
Hmm, I'm a bit unsure about this one. I need to double-check the different firewall rule options and make sure I understand the requirements correctly.
upvoted 0 times
...
Juliann
5 months ago
This looks like a straightforward firewall configuration question. I think the key is to identify the correct protocol and port for accessing secure external websites.
upvoted 0 times
...
Janine
9 months ago
Option C is just denying all HTTP traffic, which isn't what we want. Gotta go with D to permit the HTTPS connections.
upvoted 0 times
...
Carol
9 months ago
Haha, option B for SMTP? That's a funny one. I don't think we're trying to send emails through the firewall here.
upvoted 0 times
Elli
8 months ago
C) TCP 172.16.1.0/24 any any 80 HTTP deny
upvoted 0 times
...
Shanda
8 months ago
B) TCP 172.16.1.0/24 any any 25 SMTP permit
upvoted 0 times
...
Charlette
8 months ago
A) TCP 172.16.1.0/24 any any 80 HTTP permit
upvoted 0 times
...
...
Telma
9 months ago
Option A looks good too, but it's specifically for HTTP on port 80, not HTTPS. I'd go with D to be on the safe side.
upvoted 0 times
Annabelle
8 months ago
Yes, it's important to prioritize security when configuring firewall rules for accessing external websites.
upvoted 0 times
...
Sena
9 months ago
Option A looks good too, but it's specifically for HTTP on port 80, not HTTPS. I'd go with D to be on the safe side.
upvoted 0 times
...
Elvis
9 months ago
I agree, option D specifies HTTPS on port 443 which is more secure than HTTP on port 80.
upvoted 0 times
...
Eulah
9 months ago
I think option D is the best choice for allowing access to secure external websites.
upvoted 0 times
...
...
Britt
10 months ago
But allowing access to secure external websites requires using port 443 for HTTPS, so D) makes more sense.
upvoted 0 times
...
Rosenda
10 months ago
Hmm, I think option D is the correct choice here. Allowing access to secure external websites using HTTPS on port 443 seems like the appropriate firewall rule.
upvoted 0 times
Lina
9 months ago
User 2: Yeah, HTTPS on port 443 is the way to go for secure connections.
upvoted 0 times
...
Charolette
10 months ago
User 1: I agree, option D is the best choice for allowing access to secure external websites.
upvoted 0 times
...
...
Donette
10 months ago
I disagree, I believe the correct answer is A) TCP 172.16.1.0/24 any any 80 HTTP permit.
upvoted 0 times
...
Britt
11 months ago
I think the answer is D) TCP 172.16.1.0/24 any any 443 HTTPs permit.
upvoted 0 times
...

Save Cancel