ExamTopics Logo
Mail Us[email protected]
Menu
Eccouncil Discussions
exam questions

Exam 312-50v10 All Questions

View all questions & answers for the 312-50v10 exam
Go to Exam

Exam 312-50v10 topic 1 question 272 discussion

Actual exam question from ECCouncil's 312-50v10
Question #: 272
Topic #: 1
[All 312-50v10 Questions]

During a black-box pen test you attempt to pass IRC traffic over port 80/TCP from a compromised web enabled host. The traffic gets blocked; however, outbound
HTTP traffic is unimpeded. What type of firewall is inspecting outbound traffic?

  • A. Circuit
  • B. Stateful
  • C. Application
  • D. Packet Filtering
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by 1p0n1x at Jan. 12, 2021, 12:36 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Bodescu
7 months ago
Selected Answer: C
The fact that the firewall is able to distinguish IRC web traffic from regular port 80 web traffic means it's inspecting at layer 7 or doing "deep packet". This is functionality of an Application layer firewall.
upvoted 1 times
...
1p0n1x
1 year, 9 months ago
The question is related to the outbound traffic, not to the inbound traffic where there is IRC traffic. Since the question is about inbound/outbound traffic impeded and unimpeded at same time the correct answer is "B".
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago