SCP SC0-451 Exam Practice Test Instant Access

Question 1

You have recently been contracted to implement a new firewall solution at a client site. What are the two basic forms of firewall implementations?

AChaining

BStateful

CDMZ

DStateless

EKMZ

Answer : B, D

Question 2

You have been given the task of building the new wireless networks for your office. What wireless standard allows for up to 54 Mbps transmission rates, but is not compatible with 802.11b?

A802.11c

B802.11g

C802.11e

D802.11i

E802.11a

Answer : E

Question 3

You have recently taken over the security of a mid-sized network. You are reviewing the current configuration of the IPTables firewall, and notice the following rule: ipchains -A output -p TCP d 172.168.35.40 ! www What is the function of this rule?

AThis rule for the output chain states that all www traffic on 172.168.35.40 from any IP address is allowed.

BThis rule for the input chain states that all TCP packets are allowed to the 172.168.35.40 IP address to any port other than 80.

CThis rule for the input chain states that all TCP packets are able to get to the www service on any IP address except for 172.168.35.40.

DThis rule for the output chain states that all TCP packets are able to get to the www service on any IP address except for 172.168.35.40.

EThis rule for the output chain states that all TCP packets are allowed to the 172.168.35.40 IP address to any port other than 80.

Answer : E

Question 4

A router has two active Ethernet interfaces. Interface E0 is connected to network 10.10.0.0/16 while Interface E1 is connected to network 10.11.0.0/16. You are configuring access control lists to manage specific access, which is disallowed on these segments. The configuration of the lists are as follows:

router(config)#access-list 123 deny tcp 10.11.0.0 0.0.255.255 10.10.0.0 0.0.255.255 eq 20

router(config)#access-list 123 deny tcp 10.11.0.0 0.0.255.255 10.10.0.0 0.0.255.255 eq 21

router(config)#access-list 123 deny tcp 10.10.0.0 0.0.255.255 10.11.0.0 0.0.255.255 eq 20

router(config)#access-list 123 deny tcp 10.10.0.0 0.0.255.255 10.11.0.0 0.0.255.255 eq 21

router(config)#access-list 123 permit tcp 0.0.0.0 255.255.255.255 0.0.0.0 255.255.255.255

router(config)#Interface Ethernet 0 router(config-if)#ip access-group 123 in router(config-if)#Interface Ethernet 1 router(config-if)#ip access-group 123 in Based on the above list configuration, which of the following statements is true on the router?

AAll packets will be dropped

BAll packets that match the deny statements will be forwarded to the console port

CAll packets that do not match the deny statements will be allowed

DAn Access List cannot simultaneously be implemented upon two or more interfaces

EWe do not know if this is a standard or extended access list, therefore there is not enough information.

Answer : A

Question 5

You are configuring your new IDS machine, and are creating new rules. You enter the following rule: Alert tcp any any -> 10.0.10.0/24 any (msg: "SYN-FIN scan detected"; flags:SF;) What is the effect of this rule?

AThis is an alert rule, designed to notify you of SYN-FIN scans of the network in one direction.

BThis is an alert rule, designed to notify you of SYN-FIN scans of the network in either direction.

CThis is a logging rule, designed to capture SYN-FIN scans.

DThis is a logging rule, designed to notify you of SYN-FIN scans.

EThis is an alert rule, designed to notify you of SYN-FIN scans originating from the 10.0.10.0/24 network.

Answer : A

Question 6

You have been given the task of building the new wireless networks for your office, and you need to verify that your equipment will not interfere with other wireless equipment frequencies. What wireless standard allows for up to 11 Mbps transmission rates and operates in the 2.4GHz range?

A802.11b

B802.11e

C802.11a

D802.11i

E802.11g

Answer : A

Question 7

To verify that your PPTP implementation is working as you intended, you sniff the network after the implementation has been completed. You are looking for specific values in the captures that will indicate to you the type of packets received. You analyze the packets, including headers and payload. PPTP works at which layer of the OSI model?

ALayer 1

BLayer 2

CLayer 3

DLayer 4

ELayer 5

Answer : B

SCP Tactical Perimeter Defense SC0-451 Exam Practice Test