A network administrator is checking the system logs and notices unusual connectivity tests to multiple well-known ports on a server. What kind of potential network attack could this indicate?

Question:
A network administrator is checking the system logs and notices unusual connectivity tests to multiple well-known ports on a server. What kind of potential network attack could this indicate?

• access
• reconnaissance
• denial of service
• information theft

Explanation: A reconnaissance attack is the unauthorized discovery and mapping of systems, services, or vulnerabilities. One of the most common reconnaissance attacks is performed by using utilities that automatically discover hosts on the networks and determine which ports are currently listening for connections.

Exam with this question: CCNA 2 Pretest (v5.03 + v5.1 + v6.0) Exam Answers

Exam with this question: Modules 13 - 17: Threats and Attacks Group Exam
Exam with this question: Endpoint Security (ESec) Final Exam Answers (Course Final)