Firewall PBQs: CompTIA PenTest+ (PT0-003)
easyQuestion 1 of 3
During a penetration test, you discovered that the client's web server firewall allows Telnet (port 23) from the internet, which is a critical finding. As part of your remediation recommendations, correct the firewall rules: remove the Telnet allow rule and ensure SSH is restricted to the admin subnet (10.10.10.0/24) only. The web server must remain accessible via HTTPS.
Firewall Rules
| # | Direction | Source | Port | Protocol | Action | Order | |
|---|---|---|---|---|---|---|---|
| 1 | inbound | any | 443 | tcp | allow | ||
| 2 | inbound | any | 23 | tcp | allow | ||
| 3 | inbound | any | 22 | tcp | allow | ||
| 4 | inbound | any | any | any | deny |
Rules are evaluated top to bottom. Use ▲▼ to reorder.
Progress
0 of 3 rules correctEdit or add rules to configure the firewall, then mark complete
0 of 3 marked complete