Which statement is TRUE regarding network firewalls preventing Web Application attacks?

Posted by: Pdfprep Category: CPEH-001 Tags: , ,

Which statement is TRUE regarding network firewalls preventing Web Application attacks?
A . Network firewalls can prevent attacks because they can detect malicious HTTP traffic.
B . Network firewalls cannot prevent attacks because ports 80 and 443 must be opened.
C . Network firewalls can prevent attacks if they are properly configured.
D . Network firewalls cannot prevent attacks because they are too complex to configure.

Answer: B

Explanation:

Network layer firewalls, also called packet filters, operate at a relatively low level of the TCP/IP protocol stack, not allowing packets to pass through the firewall unless they match the established rule set. To prevent Web Application attacks an Application layer firewall would be required.

References: https://en.wikipedia.org/wiki/Firewall_(computing)#Network_layer_or_packet_filters

Leave a Reply

Your email address will not be published.