nerdexam
GAQM

CPEH-001 · Question #772

CPEH-001 Question #772: Real Exam Question with Answer & Explanation

The correct answer is D. Block the Blacklist IP's @ Firewall as well as Clean the Malware which are trying to Communicate. See the full explanation below for the reasoning.

Question

You are monitoring the network of your organizations. You notice that: 1. There are huge outbound connections from your Internal Network to External IPs 2. On further investigation, you see that the external IPs are blacklisted 3. Some connections are accepted, and some are dropped 4. You find that it is a CnC communication Which of the following solution will you suggest?

Options

  • ABlock the Blacklist IP's @ Firewall
  • BUpdate the Latest Signatures on your IDS/IPS
  • CClean the Malware which are trying to Communicate with the External Blacklist IP's
  • DBlock the Blacklist IP's @ Firewall as well as Clean the Malware which are trying to Communicate

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CPEH-001 Practice