XK0-005 · Question #172
XK0-005 Question #172: Real Exam Question with Answer & Explanation
The correct answer is A: tcpdump. {"question_number": 7, "explanation": "Setting /proc/sys/net/ipv4/ip_default_ttl to 0 causes IP packets to expire immediately upon leaving the originating host, so they are dropped at the first router hop and cannot leave the local subnet. To confirm this behavior: (A) tcpdump ca
Question
A technician wants to secure a sensitive workstation by ensuring network traffic is kept within the local subnet. To accomplish this task, the technician executes the following command: echo 0 > /proc/sys/net/ipv4/ip_default_ttl Which of the following commands can the technician use to confirm the expected results? (Choose two.)
Options
- Atcpdump
- Btraceroute
- Croute
- Diperf
- Eip
- Farp
Explanation
{"question_number": 7, "explanation": "Setting /proc/sys/net/ipv4/ip_default_ttl to 0 causes IP packets to expire immediately upon leaving the originating host, so they are dropped at the first router hop and cannot leave the local subnet. To confirm this behavior: (A) tcpdump captures live network traffic and can verify that no packets are being transmitted beyond the local interface; (B) traceroute sends packets with incrementing TTL values - with a default TTL of 0, traceroute probes will show packets expiring without reaching any remote hop, confirming subnet containment. route shows the routing table but doesn't validate actual traffic behavior. iperf, ip, and arp provide network performance, interface configuration, and ARP table information respectively, but do not directly confirm TTL-based traffic containment.", "generated_by": "claude-sonnet", "llm_judge_score": 3}
Topics
Community Discussion
No community discussion yet for this question.