Analyze the excerpt from a packet capture between the hosts 192.168.116.9 and 192.168.116.101. What factual conclusion can the tester draw from this output?
Analyze the excerpt from a packet capture between the hosts 192.168.116.9 and 192.168.116.101. What factual conclusion can the tester draw from this output?
Port 139 is confirmed open because it responds with a SYN+ACK packet to the SYN packet, indicating it is accepting connections. Port 135, on the other hand, only shows a SYN packet with no SYN+ACK in response, indicating that it is filtered and not open.
The correct answer is A. Port 139 is open because it returns SYN+ACK for SYN. However, port 135 does not return SYN+ACK, so it is not open at least.