A firewall administrator is implementing a rule that directs HTTP traffic to an internal server listening on a non-standard socket. Which of the following types of rules is the administrator implementing?
Wrong! The answer is SNAT!!! Rob dont give wrong answers.. SNAT is also called Port forwarding. The question is basically a port forwarding questions..
I think its PAT, because PAT is what handles the translation of specific ports for specific internal IP addresses to specific ports for external ip address, and back again.
SNAT sounds tempting because it Sounds like its a "static assignment of a port/service through to an internal machine" - but its not like that. SNAT is used when you have multiple external IP's and you want to translate All ports for a specific External IP address to a specific Internal IP.
its called Static NAT because its NAT, for a specific IP, not because its a specific Port.
It's SNAT
The same illustration above also provides yet another use case for Static PAT – the 10.4.4.41 server is hosting HTTP traffic on a non-standard port (8080).
Without the port translation, hosts on the Internet would have to specify the non-standard port in their web browser by visiting “www.site.com:8080”. Instead, with the Static PAT, the users can just type “www.site.com” (which implicitly assumes the standard web port of 80) and the router automatically translates the packet to port 8080 instead.
This could work in reverse as well. Where a non-standard port is used on the outside, but a standard port is used on the inside server.
For example, the standard port associated with SSH traffic is TCP/22. Malicious users routinely scan the entire IPv4 address space for servers listening on port TCP/22 to look for all SSH servers in hopes of finding some with weak passwords. A common strategy is to host SSH on a non-standard port in an effort to hide your SSH server from this mass scanning that occurs on port 22. https://www.practicalnetworking.net/series/nat/static-pat/
SNAT translates source IP addresses by replacing the IP address and port number of the internal network host to the external network address and port number of the device, thereby hiding the internal IP addresses or sharing the limited IP addresses. this could actually be (D)
SNAT can stand for either Static NAT or Source NAT (see acronyms on CompTIA Network+ Exam Objectives). PAT = Port Address Translation (mapping private IPs to a single public IP using separate ports to represent private IPs). In this question, it sounds like they're implementing port forwarding (aka destination NAT or port mapping, NOT Port Address Translation). SNAT is wrong. That leaves us with PAT or NAT. Seems like *NAT* is the most correct as Destination NAT (port forwarding, which can map an external-facing port to a "non-standard" private port) is a type of NAT.
n this example, the web server is configured to listen for HTTP traffic on port 8080. The clients access the web server using the IP address 192.0.2.100 and TCP Port 80. The destination NAT rule is configured to translate both IP address and port to 10.1.1.100 and TCP port 8080. Address objects are configured for webserver-private (10.1.1.100) and Servers-public (192.0.2.100).
when it comes to HTTPS requests, which uses TCP port 443, we need not only the NAT setup but also changing the router's HTTPS and SSL VPN service port, because those functions are also listening on TCP port 443 by default and they have higher priority than the NAT settings. This article demonstrates how to redirect HTTPS requests to an internal server. A should be the answer
The answer is indeed "B"
the question not only talks about traffic from Http to internal but also a non standard socket. Socket is the port#.....Look out for those clues.
check it out ladies and gentlemen. PAT Similar to NAT it also translates the private IP addresses of an internal network to the public IP address with the help of Port numbers. since we are using HTTP traffic (port 80) we can assume this is PAT.
The question states that it's inbound HTTP traffic being directed. SNAT is for outbound traffic and therefor can't be the answer. Nothing else fits and so PAT is the only answer left. I don't believe that PAT is a great fit but here we are.
SNAT or static NAT is a one-to-one mapping of a specific source or destination IP to another specific IP and can be inbound or outbound (i.e., private to public or vice versa). PAT is used to allow a range of source IP addresses (e.g., private internal) to be translated to a single IP (e.g., public) combined with translated source port allowing each host to establish a separate connection using single translated source IP. A single IP and port translation is often called Port Forwarding which is the case in this question. So, the correct answer should be "SNAT with Port Forwarding" which is missing in answers. Reference: Page 222, CompTIA Network+ N10-007, 4/2019
The answer is PAT.
Static Network Address Translation (SNAT) would be used to translate from one address to another. The question asks how to convert from one port to another; this is called Port Address Translation (PAT)
upvoted 21 times
...
...
This section is not available anymore. Please use the main Exam Page.N10-007 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Worst
Highly Voted 4 years, 9 months agoHuh
4 years, 8 months agograc3200
4 years, 7 months agoSome_Random_Nerd
Most Recent 3 years, 1 month agoronah
3 years, 1 month agoronah
3 years, 1 month agosimo77
3 years, 1 month agosimo77
3 years, 6 months agojojomax
3 years, 8 months agoekafasti
3 years, 10 months agojojomax
3 years, 12 months agojojomax
3 years, 12 months agoGigi42
4 years agob0ugi3
4 years agoTy_tyy
4 years, 2 months agomschoe
4 years, 5 months agoEjjaba
4 years, 6 months ago[Removed]
4 years, 6 months agoAmeraka
4 years, 7 months agoxxz
4 years, 7 months agoolad89
5 years, 3 months agoRob6789
5 years, 2 months ago