SY0-401 question 1433 discussion

answered

While reviewing the monthly internet usage it is noted that there is a large spike in traffic
classified as unknown and does not appear to be within the bounds of the organizations
Acceptable Use Policy. Which of the following tool or technology would work BEST for
obtaining more information on this traffic?

  • A. Firewall logs
  • B. IDS logs
  • C. Increased spam filtering
  • D. Protocol analyzer
Created 5 months, 3 weeks ago by thutruong

thutruong

Protocols analyzed will obtain more information on this traffic

golem1987

IDS also collect logs. Beleive that IDS is better then Protocol Analyzer in this case

kcbob44

Nothing was said about an intrusion. Why wouldn't Firewall logs work?

nestdorique

d