Firewall PBQs: Systems Security Certified Practitioner (SSCP)
easyQuestion 1 of 3
You are a security practitioner reviewing the perimeter firewall rules for a DMZ web server (10.0.2.0/24). The security policy states that only HTTPS traffic should be allowed from the internet, and HTTP (port 80) should be blocked. Currently, both HTTP and HTTPS are permitted, and there is no default deny rule. Correct the firewall configuration to match the security policy.
Firewall Rules
| # | Direction | Source | Port | Protocol | Action | Order | |
|---|---|---|---|---|---|---|---|
| 1 | inbound | any | 443 | tcp | allow | ||
| 2 | inbound | any | 80 | tcp | allow |
Rules are evaluated top to bottom. Use ▲▼ to reorder.
Progress
0 of 2 rules correctEdit or add rules to configure the firewall, then mark complete
0 of 3 marked complete