New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

ISC2 SSCP Exam - Topic 6 Question 12 Discussion

Actual exam question for ISC2's SSCP exam
Question #: 12
Topic #: 6
[All SSCP Questions]

What can best be defined as a strongly protected computer that is in a network protected by a firewall (or is part of a firewall) and is the only host (or one of only a few hosts) in the network that can be directly accessed from networks on the other side of the firewall?

Show Suggested Answer Hide Answer
Suggested Answer: A

The Internet Security Glossary (RFC2828) defines a bastion host as a strongly protected computer that is in a network protected by a firewall (or is part of a firewall) and is the only host (or one of only a few hosts) in the network that can be directly accessed from networks on the other side of the firewall.

Source: SHIREY, Robert W., RFC2828: Internet Security Glossary, may 2000.


by Helaine at May 06, 2022, 12:51 PM

Limited Time Offer

25%

Off

Get Premium SSCP Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Tenesha
4 months ago
Wait, are we sure about that? Sounds too simple.
upvoted 0 times
...
Sage
4 months ago
Totally agree, bastion host is the way to go!
upvoted 0 times
...
Aleshia
4 months ago
A screened subnet is different, right?
upvoted 0 times
...
Gail
4 months ago
I thought it was a proxy server at first.
upvoted 0 times
...
Joanne
5 months ago
Definitely a bastion host! It's the only one exposed.
upvoted 0 times
...
Dorian
5 months ago
I’m a bit confused between A and C. I know a dual-homed host has multiple network connections, but does it really match this definition?
upvoted 0 times
...
James
5 months ago
I recall practicing a question similar to this, and I think bastion host was the correct term. It’s the one that stands out to me.
upvoted 0 times
...
Luther
5 months ago
I’m not entirely sure, but I feel like a screened subnet could also fit the description. It’s about protecting the network, right?
upvoted 0 times
...
Dante
5 months ago
I think the answer might be A, a bastion host. I remember studying that it’s specifically designed to withstand attacks.
upvoted 0 times
...
Chaya
5 months ago
Okay, let me see. I know Accounts Payable has to connect with General Ledger, but what are the other two? Purchase Orders and Accounts Receivable seem like good guesses.
upvoted 0 times
...
Asuncion
5 months ago
I think it's two participating services, but I'm not entirely sure if that's correct.
upvoted 0 times
...
Eric
5 months ago
Wait, what's the difference between "continuously improving the inspection of facilities" and "systematically reducing the risk associated with pressure boundary failures"? I'm not sure which one is the main purpose of RBI. I'll have to re-read the question.
upvoted 0 times
...
Shala
5 months ago
This looks like a straightforward question about pen testing reports. I think the answer is B - Activity Report, since that would provide the most detailed information about all the tasks performed during the testing.
upvoted 0 times
...

Save Cancel