ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CAS-004 All Questions

View all questions & answers for the CAS-004 exam
Go to Exam

Exam CAS-004 topic 1 question 307 discussion

Actual exam question from CompTIA's CAS-004
Question #: 307
Topic #: 1
[All CAS-004 Questions]

A security consultant has been asked to recommend a secure network design that would:

• Permit an existing OPC server to communicate with a new Modbus server that is controlling electrical relays.
• Limit operational disruptions.

Due to the limitations within the Modbus protocol, which of the following configurations should the security engineer recommend as part of the solution?

  • A. Restrict inbound traffic so that only the OPC server is permitted to reach the Modbus server on port 135.
  • B. Restrict outbound traffic so that only the OPC server is permitted to reach the Modbus server on port 102.
  • C. Restrict outbound traffic so that only the OPC server is permitted to reach the Modbus server on port 5000.
  • D. Restrict inbound traffic so that only the OPC server is permitted to reach the Modbus server on port 502.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by Johnxyzzzz at Sept. 24, 2023, 2:05 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
e4af987
7 months, 1 week ago
Selected Answer: A
Check Gemini's (partial) response: Modbus protocol: Modbus is a lightweight protocol that traditionally doesn't implement strong authentication or encryption mechanisms. Port usage: Modbus typically uses port 502 for communication. However, due to limitations in the protocol itself, relying solely on port restrictions for security isn't ideal.
upvoted 1 times
...
e020fdc
8 months, 3 weeks ago
Selected Answer: D
Even if you don't know those port numbers, you could still narrow it down to A or D because the OPC traffic is the only traffic inbound to the server.
upvoted 2 times
...
ElDirec
9 months, 1 week ago
Selected Answer: D
The security engineer should recommend **D. Restrict inbound traffic so that only the OPC server is permitted to reach the Modbus server on port 502**. Modbus is a communication protocol used for transmitting information over serial lines between electronic devices. The standard Modbus TCP/IP protocol uses port 502 for communication. Therefore, to allow the OPC server to communicate with the Modbus server while limiting operational disruptions, the inbound traffic to the Modbus server on port 502 should be restricted so that only the OPC server can reach it.
upvoted 2 times
...
Johnxyzzzz
1 year, 1 month ago
Selected Answer: D
Modbus communicates over TCP port 502.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago