Answered step by step
Verified Expert Solution
Question
1 Approved Answer
Internet HII SIRIH 10 252.1.204 10 252.15 INI STUS ||UCast ||Leam DMZ 102924237 10252 102 10/2012 2012521801 10252 4 LON2529.90 1002524108 10.252.6161 10/232.8.143 292 110
Internet HII SIRIH 10 252.1.204 10 252.15 INI STUS ||UCast ||Leam DMZ 102924237 10252 102 10/2012 2012521801 10252 4 LON2529.90 1002524108 10.252.6161 10/232.8.143 292 110 10232.871 10.252 8/2011 102020101 10/22430 10.2022 10.252 8.130 Internal OPS Receiving Shipping CH 10.252.9.131 10/2522125 2012523.239 L29 10.2523 192 10.252.9.95 10.252.2.194 09 10 7512.101 10 252.9 219 10/262245 102 10 27 BBO 10 252.9.137 10.252.222 10 2520 212 10 252 9.250 101252299 HR Finance Markeung Given the image above, complete the signature rule for the following: Write a snort rule that will simultaneously block and log PING packets from the DMZ to the all network segments. Assume the use of IPv4 addresses. DO NOT use snort variables ($HOME_NET) as you would normally find in the snort.conf file. Include CIDR notation for a range of addresses when necessary. When a service supports both. TCP and UDP assume TCP. Use Section 1 for the rule action Use Section 2 for the protocol Use Section 3 for the source IP address Use Section 4 for the source port number Use Section 5 for the direction symbol (->, ) Use Section 6 for the destination IP address Use Section 7 for the destination port number Internet HII SIRIH 10 252.1.204 10 252.15 INI STUS ||UCast ||Leam DMZ 102924237 10252 102 10/2012 2012521801 10252 4 LON2529.90 1002524108 10.252.6161 10/232.8.143 292 110 10232.871 10.252 8/2011 102020101 10/22430 10.2022 10.252 8.130 Internal OPS Receiving Shipping CH 10.252.9.131 10/2522125 2012523.239 L29 10.2523 192 10.252.9.95 10.252.2.194 09 10 7512.101 10 252.9 219 10/262245 102 10 27 BBO 10 252.9.137 10.252.222 10 2520 212 10 252 9.250 101252299 HR Finance Markeung Given the image above, complete the signature rule for the following: Write a snort rule that will simultaneously block and log PING packets from the DMZ to the all network segments. Assume the use of IPv4 addresses. DO NOT use snort variables ($HOME_NET) as you would normally find in the snort.conf file. Include CIDR notation for a range of addresses when necessary. When a service supports both. TCP and UDP assume TCP. Use Section 1 for the rule action Use Section 2 for the protocol Use Section 3 for the source IP address Use Section 4 for the source port number Use Section 5 for the direction symbol (->, ) Use Section 6 for the destination IP address Use Section 7 for the destination port number
Step by Step Solution
There are 3 Steps involved in it
Step: 1
Get Instant Access to Expert-Tailored Solutions
See step-by-step solutions with expert insights and AI powered tools for academic success
Step: 2
Step: 3
Ace Your Homework with AI
Get the answers you need in no time with our AI-driven, step-by-step assistance
Get Started