Which sequence enables SSH access only from a specific network and blocks others?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Study for the MTCNA Foundation Exam. Prepare with flashcards and multiple choice questions, each question has hints and explanations. Get ready for your certification!

Multiple Choice

Which sequence enables SSH access only from a specific network and blocks others?

Explanation:
To allow SSH only from a specific network, both the service and the firewall must be constrained. Binding SSH to a specific address (192.168.0.0/24) ensures the service themselves won’t respond on other interfaces. Then use firewall rules that first accept TCP traffic on port 22 from that source network and afterward drop TCP traffic on port 22 from all other sources. This order guarantees that legitimate SSH from the allowed network gets through, while anything else is blocked. The other approaches fail because they either expose SSH to all addresses (listening on 0.0.0.0/0), permit SSH from any source (a blanket accept), or disable the service entirely.

To allow SSH only from a specific network, both the service and the firewall must be constrained. Binding SSH to a specific address (192.168.0.0/24) ensures the service themselves won’t respond on other interfaces. Then use firewall rules that first accept TCP traffic on port 22 from that source network and afterward drop TCP traffic on port 22 from all other sources. This order guarantees that legitimate SSH from the allowed network gets through, while anything else is blocked. The other approaches fail because they either expose SSH to all addresses (listening on 0.0.0.0/0), permit SSH from any source (a blanket accept), or disable the service entirely.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy