ExamTopics Logo
Mail Us[email protected]
Menu
Eccouncil Discussions
exam questions

Exam 312-50v10 All Questions

View all questions & answers for the 312-50v10 exam
Go to Exam

Exam 312-50v10 topic 1 question 89 discussion

Actual exam question from ECCouncil's 312-50v10
Question #: 89
Topic #: 1
[All 312-50v10 Questions]

You are monitoring the network of your organizations. You notice that:
1. There are huge outbound connections from your Internal Network to External IPs
2. On further investigation, you see that the external IPs are blacklisted
3. Some connections are accepted, and some are dropped
4. You find that it is a CnC communication
Which of the following solution will you suggest?

  • A. Block the Blacklist IP's @ Firewall
  • B. Update the Latest Signatures on your IDS/IPS
  • C. Clean the Malware which are trying to Communicate with the External Blacklist IP's
  • D. Both B and C
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by netmsn at Feb. 16, 2020, 8:58 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
kudzidza
1 year, 1 month ago
will answ A not solve?
upvoted 1 times
datastream
1 year, 1 month ago
it would but it's best the clean up the source of the issue
upvoted 1 times
...
...
netmsn
1 year, 11 months ago
Update the Latest Signatures on your IDS/IPS. is the correct answer . ( Some connections are accepted, and some are dropped)
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel