Question

Listen to exam instructions to answer this question. Complete the lab using the information below. You are the corpnet IT administrator, and your support team says that corpnet's customers are unable to browse to the public-facing web server. You suspect that it might be under some sort of denial-of-service attack, possibly a TCP-SYN flood attack. Your www stage computer is on the same network segment as your web server, so you should use this computer to investigate the problem. In this lab, your task is to:

Option A: Capture packets from the network segment on www stage using Wireshark, using the enp2s0 interface.
Option B: Analyze the attack using the www stage computer's firewall settings.
Option C: Reboot the web server to resolve the browsing issue.
Option D: Ignore the issue as it might be a temporary glitch.

Answer 1

The subject of this question is Computers and Technology. The correct option to resolve the browsing issue is Option A: Capture packets using Wireshark to analyze for a possible TCP-SYN flood attack.

Step-by-step explanation:

Detailed Answer:

The subject of this question is Computers and Technology. It involves a scenario where the IT administrator is investigating a browsing issue on the corpnet network. The administrator suspects a TCP-SYN flood attack and needs to choose the appropriate option to resolve the issue.The correct option to address the problem is Option A: Capture packets from the network segment on www stage using Wireshark. By analyzing the captured packets, the administrator can identify if there is a TCP-SYN flood attack and take appropriate measures to mitigate it.Ignoring the issue (Option D) or rebooting the web server (Option C) would not be effective solutions to address a possible attack. Analyzing the attack using the firewall settings (Option B) might provide some insights, but directly capturing and analyzing packets using Wireshark is the most reliable approach.