nerdexam
Exams200-201Questions#324
CiscoCisco

200-201 · Question #324

200-201 Question #324: Real Exam Question with Answer & Explanation

The correct answer is C: HTTP. The exhibit indicates that HTTP is the targeted application-level protocol, likely evidenced by plaintext web requests or responses that conform to the HTTP standard.

Submitted by yasin.bd· Mar 6, 2026Network Intrusion Analysis

Question

Refer to the exhibit. Which application-level protocol is being targeted?

Options

  • AFTP
  • BTCP
  • CHTTP
  • DHTTPS

Explanation

The exhibit indicates that HTTP is the targeted application-level protocol, likely evidenced by plaintext web requests or responses that conform to the HTTP standard.

Common mistakes.

  • A. FTP (File Transfer Protocol) operates on different ports (e.g., 20, 21) and has distinct commands (e.g., USER, PASS, RETR) that would be visible if it were the targeted protocol.
  • B. TCP (Transmission Control Protocol) is a transport layer protocol, not an application-layer protocol; HTTP runs over TCP, but TCP itself is not the application being targeted.
  • D. HTTPS (Hypertext Transfer Protocol Secure) encrypts HTTP traffic using TLS/SSL, typically over port 443; if the exhibit shows plaintext web traffic, HTTPS is not in use.

Concept tested. Application layer protocol identification (HTTP)

Reference. https://learn.microsoft.com/en-us/troubleshoot/windows-server/networking/hypertext-transfer-protocol-overview

Topics

#Application layer protocols#Web application security#HTTP

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 200-201 PracticeBrowse All 200-201 Questions