A law office uses a Linux host as the firewall device for the network. The IT administrator is adding a rule to the firewall iptables to block internal hosts from connecting to a remote device that has the IP address 209.165.202.133. Which command should the administrator use?

IT Questions BankCategory: CCNA CyberOpsA law office uses a Linux host as the firewall device for the network. The IT administrator is adding a rule to the firewall iptables to block internal hosts from connecting to a remote device that has the IP address 209.165.202.133. Which command should the administrator use?

A law office uses a Linux host as the firewall device for the network. The IT administrator is adding a rule to the firewall iptables to block internal hosts from connecting to a remote device that has the IP address 209.165.202.133. Which command should the administrator use?

  • iptables -I FORWARD -p tcp -d 209.165.202.133 --dport 7777 -j DROP
  • iptables -I INPUT -p tcp -d 209.165.202.133 --dport 7777 -j DROP
  • iptables -I PASS -p tcp -d 209.165.202.133 --dport 7777 -j DROP
  • iptables -I OUTPUT -p tcp -d 209.165.202.133 --dport 7777 -j DROP

Explanation: The firewall iptables uses the concepts of chains and rules to filter traffic:

  • INPUT chain – handles traffic entering the firewall and destined to the firewall device itself
  • OUTPUT chain – handles traffic originating within the firewall device itself and destined to somewhere else
  • FORWARD chain – handles traffic originated somewhere else and passing through the firewall device

Exam with this question: CCNA Cyber Ops Chapter 12 Exam Answers

Subscribe
Notify of
guest

0 Comments
Inline Feedbacks
View all comments
0
Would love your thoughts, please comment.x
()
x