Free 202-450 Exam Braindumps

On a Linux router, packet forwarding for IPv4 has been enabled. After a reboot, the machine no longer forwards IP packets from other hosts. The command:
echo 1 > /proc/sys/net/ipv4/ip_forward temporarily resolves this issue.

Which one of the following options is the best way to ensure this setting is saved across system restarts?

  1. Add echo 1 > /proc/sys/net/ipv4/ip_forward to the root user login script
  2. Add echo 1 > /proc/sys/net/ipv4/ip_forward to any user login script
  3. In /etc/sysct1.conf change net.ipv4.ip_forward to 1
  4. In /etc/rc.local add net.ipv4.ip_forward = 1
  5. In /etc/sysconfig/iptables-config add ipv4.ip_forward = 1

Answer(s): C



To which destination will a route appear in the Linux routing table after activating IPv6 on a router’s network interface, even when no global IPv6 addresses have been assigned to the interface?

  1. fe80::/10
  2. 0::/128
  3. 0::/0
  4. fe80::/64
  5. 2000::/3

Answer(s): A



Which of the following commands can be used to connect and interact with remote TCP network services? (Choose two.)

  1. nettalk
  2. nc
  3. telnet
  4. cat
  5. netmap

Answer(s): B,C



Which FTP names are recognized as anonymous users in vsftp when the option anonymous_enable is set to yes in the configuration files? (Choose two.)

  1. anonymous
  2. ftp
  3. In the described configuration, any username which neither belongs to an existing user nor has another special meaning is treated as anonymous user.
  4. nobody
  5. guest

Answer(s): A,B


Reference:

http://vsftpd.beasts.org/vsftpd_conf.html#lbAE



Using its standard configuration, how does fail2ban block offending SSH clients?

  1. By rejecting connections due to its role as a proxy in front of SSHD.
  2. By modifying and adjusting the SSHD configuration.
  3. By creating and maintaining netfilter rules.
  4. By creating null routes that drop any answer packets sent to the client.
  5. By modifying and adjusting the TCP Wrapper configuration for SSHD.

Answer(s): B


Reference:

https://www.digitalocean.com/community/tutorials/how-to-protect-ssh-with-fail2ban-on-centos-7