LPI
117-201 · Question #14
117-201 Question #14: Real Exam Question with Answer & Explanation
Sign in or unlock 117-201 to reveal the answer and full explanation for question #14. The question stem and answer options stay visible for context.
Question
You find that a host (192.168.1.4) being used on one of your client's networks has been compromised with a backdoor program listening on port 31337. Your client requests a list of originating IP addresses connecting to that port. Using a Linux workstation as traffic analyzer, which of the following commands would gather the data requested by the client?
Options
- Atcpdump host 192.168.1.4 and port 31337 -w out
- Bnmap host 192.168.1.4:31337
- Carpwatch -n 192.168.1.4/32 -p 31337 > capture
- Dpcap -d 192.168.1.4:31337
- Eipwatch --syn 192.168.1.4 -p 31337 --1og=out
Unlock 117-201 to see the answer
You've previewed enough free 117-201 questions. Unlock 117-201 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.