Gate 2011 : Layer 4 firewall

mayank

unread,

Jul 20, 2012, 12:57:01 AM7/20/12

to gate2013...@googlegroups.com

A layer-4 firewall CANNOT :

(a) block entire http traffic during 9:00 pm and 5:00 am.

(b) block all ICMP traffic.

(c) stop incoming traffic from a specific IP address but allow outgoing traffic to the same IP address.

(d) block TCP traffic from a specific user on a multiuser system during 9:00 pm and 5:00 am.

In this question no option is correct becoz at TL by blocking TCP segments with port no. 80, We can block http. So are we correct..??

Ravi

unread,

Jul 20, 2012, 5:15:22 AM7/20/12

to gate2013...@googlegroups.com

Option d says specific host..in order to block specific host, we definitely need to have password and authentication..so we need application layer :)

mayank

unread,

Jul 20, 2012, 9:55:45 AM7/20/12

to gate2013...@googlegroups.com

but this can also be done by putting restriction on the ip address of a particular user .

Ravi

unread,

Jul 20, 2012, 10:34:25 PM7/20/12

to gate2013...@googlegroups.com

Ip address changes in seconds :)

mayank

unread,

Jul 21, 2012, 4:59:47 AM7/21/12

to gate2013...@googlegroups.com

but if a permanent ip is given he can be blocked

Ravi

unread,

Jul 21, 2012, 5:03:51 AM7/21/12

to gate2013...@googlegroups.com

how can you get a permanent IP...IANA teri gf ka company hai kya..

paresh nemade

unread,

Jul 21, 2012, 9:22:04 AM7/21/12

to gate2013...@googlegroups.com

@mayank even if you assign IP address to a machine(private address) it
changes when this machine gets connected to the Internet. NAT
(network address translation ) is done whenever packer crosses
organization boundary

Sajal Sharma

unread,

Jan 13, 2013, 1:50:48 AM1/13/13

to gate2013...@googlegroups.com

even if you block a particular IP address of that particular user,then that IP will be blocked,but doing so will block all the users that try to login from that IP address which we dont want to do.....

Reply all

Reply to author

Forward