ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam SY0-601 All Questions

View all questions & answers for the SY0-601 exam
Go to Exam

Exam SY0-601 topic 1 question 492 discussion

Actual exam question from CompTIA's SY0-601
Question #: 492
Topic #: 1
[All SY0-601 Questions]

During a security incident, the security operations team identified sustained network traffic from a malicious IP address: 10.1.4.9. A security analyst is creating an inbound firewall rule to block the IP address from accessing the organization's network. Which of the following fulfills this request?

  • A. access-list inbound deny ip source 0.0.0.0/0 destination 10.1.4.9/32
  • B. access-list inbound deny ip source 10.1.4.9/32 destination 0.0.0.0/0
  • C. access-list inbound permit ip source 10.1.4.9/32 destination 0.0.0.0/0
  • D. access-list inbound permit ip source 0.0.0.0/0 destination 10.1.4.9/32
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by CastratedMonk at July 5, 2023, 9:19 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
ApplebeesWaiter1122
Highly Voted 1 year, 11 months ago
Selected Answer: B
The correct firewall rule to block the malicious IP address 10.1.4.9 from accessing the organization's network is: B. access-list inbound deny ip source 10.1.4.9/32 destination 0.0.0.0/0 In this rule, the source IP address 10.1.4.9 is denied access to any destination IP address (0.0.0.0/0) in the organization's network. This effectively blocks the malicious IP address from accessing any resources within the network.
upvoted 11 times
...
jack35567
Most Recent 1 year, 3 months ago
Selected Answer: B
B…. Why is this a question?
upvoted 1 times
...
cyberPunk28
1 year, 6 months ago
Selected Answer: B
B. access-list inbound deny ip source 10.1.4.9/32 destination 0.0.0.0/0
upvoted 1 times
...
[Removed]
1 year, 6 months ago
Selected Answer: B
One of the easiest questions here
upvoted 2 times
...
Gamsje
1 year, 11 months ago
Selected Answer: B
Obvious answer Deny this 10.1.4.9/32 Choose B
upvoted 2 times
...
mtnews
1 year, 11 months ago
Selected Answer: B
B is the correct answer. You are denying the IP 10.1.4.9 / 32
upvoted 2 times
...
CastratedMonk
1 year, 11 months ago
Selected Answer: B
Going with B on this one as the source address is what is coming into the network and it is denying access to every IP address
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel