Which rule action will cause Snort IPS to block and log a packet?

Jun 1, 2021 Last Updated: Jun 1, 2021 No Comments
Tweet Share Pin it
IT Questions BankCategory: CCNA SecurityWhich rule action will cause Snort IPS to block and log a packet?

Which rule action will cause Snort IPS to block and log a packet?

  • log
  • drop
  • alert
  • Sdrop

Explanation: Snort IPS mode can perform all the IDS actions plus the following:
- Drop - Block and log the packet.
- Reject - Block the packet, log it, and then send a TCP reset if the protocol is TCP or an ICMP port unreachable message if the protocol is UDP.
- Sdrop - Block the packet but do not log it.

Exam with this question: Network Security Final Exam Answers

Subscribe
Notify of
guest

0 Comments
Inline Feedbacks
View all comments