The Eduladder is a community of students, teachers, and programmers just interested to make you pass any exams. So we help you to solve your academic and programming questions fast.
In eduladder you can Ask,Answer,Listen,Earn and Download Questions and Question papers.
Watch related videos of your favorite subject.
Connect with students from different parts of the world.
Apply or Post Jobs, Courses ,Internships and Volunteering opportunity. For FREE
See Our team
Wondering how we keep quality?
Got unsolved questions? Ask Questions

Security-Interview-Questions-Advanced-->View question


Asked On2019-08-02 06:50:18 by:Gaganpreet-Gandhi

Taged users:


Likes:
Be first to like this question

Dislikes:
Be first to dislike this question
Talk about this  Like  Dislike
View all qusetions
Answers

It depends about the situation.

For small company servers or back-end systems or intranet sites I will choose to close ports (REJECT).

The reason for that is because those server are not usually targeted by DDoS attacks and also because the external apps that requires to consume services hosted in the the servers can quickly report failures instead to hang the connections during minutes.

For example, I faced a situation that one of my admins filtered a port (DROP) by mistake that was currently in use in a streaming server, and all the client video players were displaying the “Loading…” message during minutes. The reason was that video players were waiting for the server answer and they were configured with a high connection timeout. In this case I would like to reject the connections, because if this situation happens again at least external clients can display a quickly “Unable to connect” message.

If your server is used as website that can be targeted by a DDoS attacks then I will choose the “DROP” policy because in this way your firewall is not going to consume CPU and bandwidth answering about the state of the port (Sending back ICMP messages).


Answerd on:2019-08-03 Answerd By:Ak

Likes:
Be first to like this answer

Dislikes:
Be first to dislike this answer
Talk about this  Like  Dislike

You might like this video:Watch more here

Watch more videos from this user Here

Learn how to upload a video and start earning here



Lets together make the web is a better place

We made eduladder by keeping the ideology of building a supermarket of all the educational material available under one roof. We are doing it with the help of individual contributors like you, interns and employees. So the resources you are looking for can be easily available and accessible also with the freedom of remix reuse and reshare our content under the terms of creative commons license with attribution required close.

You can also contribute to our vision of "Helping student to pass any exams" with these.
Answer a question: You can answer the questions not yet answered in eduladder.How to answer a question
Career: Work or do your internship with us.Work with us
Create a video: You can teach anything and everything each video should be less than five minutes should cover the idea less than five min.How to upload a video on eduladder


New updates
Searching for :Shell+scriptDate:2019-12-07 05:24:36Done by:Anonymous user(Visitor)

Searching for :Node+JsDate:2019-12-07 05:24:35Done by:Anonymous user(Visitor)

Searching for :Node+JsDate:2019-12-07 05:19:56Done by:Anonymous user(Visitor)
Career 2.0

You might be intrested on below oppertunities Show me All

Show all

Similar Questions


Do you prefer filtered ports or closed ports on your firewall?
1 Answer

For which of the following sectors do comprehensive safety and health statutes, for regulating Occupational Safety and Health (OSH) at work places, exist at present in India ?
0 Answer

Name the sea-ports on either end of this canal. (GEOGRAPHY-CBSE-12-2018)
1 Answer

Explain direct addressing input output ports.
1 Answer

Consider that 15 machines need to be connected in a LAN using 8-port Ethernet switches. Assume that these switches do not have any separate uplink ports. The minimum number of switches needed is__________.
0 Answer

Which one of the following major ports has been developed to decongest Kolkata Port. - CBSE Geography.
1 Answer

consider the following statements
0 Answer

Which of the following is most often considered as components interface bug?
1 Answer

How does a firewall protect the system?
1 Answer

What Is The Difference Between C And C++ ? Would You Prefer To Use One Over The Other ?
1 Answer

Classify each of the following as a homogeneous or heterogeneous mixture. CBSE- Class9- Chemistry 2013
1 Answer

T he set of all recursively enumerable languages is
1 Answer

What is a firewall?
1 Answer

What is a firewall?
1 Answer

What is a firewall?
0 Answer

Definitions of Firewall ?
1 Answer

Explain Firewall and its types.
1 Answer

What is a firewall and what is the use of it explain in detail?
1 Answer

In the circuit shown below, the initial charge on the capacitor is 2.5 mC -gate-ece-2011
1 Answer

Fill in the blanks GATE-Instrumentation-Engineering-2014
1 Answer

Notes

firewall

06cs45 MicroProcessor

Light Peak

Computer networks basic concepts unit 3

Remote Administration Trojan's

CE 2030 COASTAL ZONE MANAGEMENT

Intel Centrino Mobile Technology

Embedded computing systems 10CS72

CE2303 RAILWAYS, AIRPORTS AND HARBOUR ENGINEERING

STORAGE AREA NETWORK [12SCS322] Unit-9 VTU