What are two valid ways to enable Packet-Based Attack Protection?

PCNSE V6 0 Comments

A network security administrator wants to enable Packet-Based Attack Protection in a Zone Protection profile.

What are two valid ways to enable Packet-Based Attack Protection? (Choose two.)
A . ICMP Drop
B. TCP Drop
C. TCP Port Scan Block
D. SYN Random Early Drop

Answer: B,D

Explanation:

Packet-Based Attack Protection is a feature of Zone Protection Profiles that allows the firewall to drop packets that are malformed, spoofed, or part of a port scan. TCP Drop and SYN Random Early Drop are two options under Packet-Based Attack Protection that can be enabled to protect against TCP-based attacks. TCP Drop enables the firewall to check for spoofed IP addresses, mismatched overlapping TCP segments, and invalid IP options. SYN Random Early Drop enables the firewall to drop SYN packets randomly when the SYN queue is full, preventing SYN flood attacks. ICMP Drop and TCP Port Scan Block are not valid options under Packet-Based Attack Protection

Latest PCNSE Dumps Valid Version with 280 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download PCNSE PDF     PCNSE Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments