nerdexam
ExamsN10-005Questions#643
CompTIA

N10-005 · Question #643

N10-005 Question #643: Real Exam Question with Answer & Explanation

The correct answer is E: Allow TCP port 22 outbound. Two outbound rules are needed: (1) TCP port 80 for standard HTTP web browsing - HTTP is a TCP-based protocol, so UDP would be incorrect. (2) TCP port 22 for SSH - SSH also uses TCP, not UDP, and port 22 is the correct SSH port (not port 21, which is FTP). Both rules must specify

Question

An organization has installed a new firewall. Users need to have access to remote websites and must be able to use SSH to retrieve files from remote locations. Which of the following actions should be taken on the new firewall? (Select TWO).

Options

  • AAllow UDP port 21 outbound
  • BAllow UDP port 22 outbound
  • CAllow UDP port 80 outbound
  • DAllow TCP port 21 outbound
  • EAllow TCP port 22 outbound
  • FAllow TCP port 80 outbound

Explanation

Two outbound rules are needed: (1) TCP port 80 for standard HTTP web browsing - HTTP is a TCP-based protocol, so UDP would be incorrect. (2) TCP port 22 for SSH - SSH also uses TCP, not UDP, and port 22 is the correct SSH port (not port 21, which is FTP). Both rules must specify TCP because these application-layer protocols require the reliability and connection-oriented nature of TCP. UDP variants for these ports are incorrect because neither HTTP nor SSH uses UDP.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full N10-005 Practice