Online Access Free CompTIA.SY0-501.v2022-02-09.q543 Practice Test (Page 3)

SY0-501 Exam Question 6

An in-house penetration tester is using a packet capture device to listen in on network communications. This is an example of:

A.Escalation of privileges

B.Passive reconnaissance

C.Persistence

D.Exploiting the switch

SY0-501 Exam Question 7

Task: Configure the firewall (fill out the table) to allow these four rules:
* Only allow the Accounting computer to have HTTPS access to the Administrative server.
* Only allow the HR computer to be able to communicate with the Server 2 System over SCP.
* Allow the IT computer to have access to both the Administrative Server 1 and Administrative Server 2

Correct Answer:

See the solution below.
Explanation
Use the following answer for this simulation task.
Below table has all the answers required for this question.

Firewall rules act like ACLs, and they are used to dictate what traffic can pass between the firewall and the internal network. Three possible actions can be taken based on the rule's criteria:
Block the connection Allow the connection
Allow the connection only if it is secured
TCP is responsible for providing a reliable, one-to-one, connection-oriented session. TCP establishes a connection and ensures that the other end receives any packets sent.
Two hosts communicate packet results with each other. TCP also ensures that packets are decoded and sequenced properly. This connection is persistent during the session.
When the session ends, the connection is torn down.
UDP provides an unreliable connectionless communication method between hosts. UDP is considered a best-effort protocol, but it's considerably faster than TCP.
The sessions don't establish a synchronized session like the kind used in TCP, and UDP doesn't guarantee error-free communications.
The primary purpose of UDP is to send small packets of information.
The application is responsible for acknowledging the correct reception of the data. Port 22 is used by both SSH and SCP with UDP.
Port 443 is used for secure web connections? HTTPS and is a TCP port.
Thus to make sure only the Accounting computer has HTTPS access to the Administrative server you should use TCP port 443 and set the rule to allow communication between 10.4.255.10/24 (Accounting) and
10.4.255.101 (Administrative server1) Thus to make sure that only the HR computer has access to Server2 over SCP you need use of TCP port 22 and set the rule to allow communication between 10.4.255.10/23 (HR) and 10.4.255.2 (server2) Thus to make sure that the IT computer can access both the Administrative servers you need to use a port and accompanying port number and set the rule to allow communication between: 10.4.255.10.25 (IT computer) and 10.4.255.101 (Administrative server1)
10.4.255.10.25 (IT computer) and 10.4.255.102 (Administrative server2)

SY0-501 Exam Question 8

The security administrator has installed a new firewall which implements an implicit DENY policy by default.
INSTRUCTIONS:
Click on the firewall and configure it to allow ONLY the following communication.
1. The Accounting workstation can ONLY access the web server on the public network over the default HTTPS port. The accounting workstation should not access other networks.
2. The HR workstation should be restricted to communicate with the Financial server ONLY, over the default SCP port
3. The Admin workstation should ONLY be able to access the servers on the secure network over the default TFTP port.
Instructions: The firewall will process the rules in a top-down manner in order as a first match The port number must be typed in and only one port number can be entered per rule Type ANY for all ports. The original firewall configuration can be reset at any time by pressing the reset button. Once you have met the simulation requirements, click save and then Done to submit.

Hot Area:

SY0-501 Exam Question 9

A security analyst received an after-hours alert indicating that a large number of accounts with the suffix "admin'' were locked out. The accounts were all locked out after five unsuccessful login attempts, and no other accounts on the network triggered the same alert. Which of the following is the BEST explanation for these alerts?

A.The administrator accounts do not have rigid password complexity rules, and this made them easier to crack.

B.The standard naming convention makes administrator accounts easy to identify, and they were targeted for an attack.

C.The threshold for locking out administrator accounts is too high, and it should be changed from five to three to prevent unauthorized access attempts.

D.The company has implemented time-of-day restrictions, and this triggered a false positive alert when the administrators tried to log in

SY0-501 Exam Question 10

A systems administrator is implementing a remote access method for the system that will utilize GUI. Which of the following protocols would be BEST suited for this?

A.SFTP

B.TLS

C.SRTP

D.SSH

Other Version: 43CompTIA.Dumps4pdf.SY0-501.v2022-04-15.by.jim.543q.pdf; 10728CompTIA.SY0-501.v2021-09-23.q634

Latest Upload: 170IIA.IIA-CIA-Part3.v2026-06-17.q220; 128WGU.Introduction-to-IT.v2026-06-17.q67; 189CompTIA.220-1202.v2026-06-16.q110; 125TheInstitutes.CPCU-500.v2026-06-16.q25; 199ACAMS.CAMS7-CN.v2026-06-16.q170; 202CBIC.CIC.v2026-06-15.q123; 136Peoplecert.ITIL-4-Specialist-High-velocity-IT.v2026-06-15.q16; 236HashiCorp.Terraform-Associate-004.v2026-06-15.q126; 141Peoplecert.ITILFNDv5.v2026-06-15.q26; 139Workday.Workday-Pro-HCM-Reporting.v2026-06-15.q28

SY0-501 Exam Question 6

SY0-501 Exam Question 7

SY0-501 Exam Question 8

SY0-501 Exam Question 9

SY0-501 Exam Question 10

Download PDF File