Which type of log is this an example of?

210-255 2 Comments

Refer to the exhibit.

Which type of log is this an example of?
A . IDS log
B . proxy log
C . NetFlow log
D . syslog

Answer: C

Explanation:

A typical output of a NetFlow command line tool (nfdump in this case) when printing the stored flows may look as follows:

Date flow start Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2010-09-01 00:00:00.459 0.000 UDP 127.0.0.1:24920 -> 192.168.0.1:22126 1 46 1 2010-09-01 00:00:00.363 0.000 UDP 192.168.0.1:22126 -> 127.0.0.1:24920 1 80 1

Reference: http://nfdump.sourceforge.net/

Latest 210-255 Dumps Valid Version with 170 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download 210-255 PDF     210-255 Questions Online Training
Subscribe
Notify of
guest
2 Comments
Inline Feedbacks
View all comments
my guess
my guess
3 years ago

The Sig ID field points to the IDS log – my guess
The samples output doesn’t match Net Flow v5, doesn’t include bytes or packets, Net flow doesn’t use the Severity field
The syslog field in the Severity field with the value 6 (perhaps Information) but doesn’t include Facility or the typical message

0
Reply
Anthony Bishoff
Anthony Bishoff
3 years ago

Answer should be A. IDS Log

0
Reply