Question $7$: Consider the following Snort rule:

katiakati: $ mousepad$/$etc$/$snort$/$snort$.$conf

$*/$etc$/$snort$/$snor

File Edit Search View Document Help

$logtcp$ any any $192\mathrm{.}168\mathrm{.}1\mathrm{.}0/24!6000$:$6010$

a$)$ What type of connection this rule is applied to$?($include protocol name$)$

b$)$ What traffic is monitored? $($include source, destination, ports, and directions$)$

c$)$ Any additional requirement$/$characteristics in the traffic that the rule looks for?

d$)$ What happens when the rule is matched? $($include action$)$