HomeworkLib
Question

A security analyst wants to create a NIDS rule to detect when anomalous DNS traffic takes...

A security analyst wants to create a NIDS rule to detect when anomalous DNS traffic takes place on the network. Which of the following items should the analyst take into consideration? (Select TWO).

A DNS uses TCP over port 53.

B DNS Traffic must be decrypted before being inspected.

C UDP queries are usually bigger than 1024 bytes.

D Zone transfers are public and can be accepted from any source.

E Zone transfers should only be sent to approved destinations.

engineering   Computer-Science   
0 0
Add a comment Improve this question Transcribed image text
Next > < Previous
Sort answers by oldest

Homework Answers

Answer #1

Answer : The analyst must take B and E options into consideration when the anomalous DNS traffic takes place on the network.

Explanation:

I have selected option B because all encrypted DNS traffic must be decrypted before being inspected and option E because zone tranfers should only be sent to approved destinations as we can't send to unapproved destinations. Remaining options are not related to the question asked.

0 0
Add a comment
Know the answer?
Add Answer to:
A security analyst wants to create a NIDS rule to detect when anomalous DNS traffic takes...
Your Answer:

Post as a guest

Your Name:

What's your source?

Earn Coins

Coins can be redeemed for fabulous gifts.

Log In

Sign Up

Not the answer you're looking for? Ask your own homework help question. Our experts will answer your question WITHIN MINUTES for Free.
Similar Homework Help Questions
ADVERTISEMENT
Free Homework Help App
Download From Google Play
Scan Your Homework
to Get Instant Free Answers
Need Online Homework Help?
Ask a Question
Get Answers For Free
Most questions answered within 3 hours.
ADVERTISEMENT
ADVERTISEMENT