The following is an excerpt from the output of tcpdump ""nli eth1:
Which network service or protocol was used?
201-450 Exam QuestionsBrowse all questions from this exam
201-450 Exam - Question 57
Show AnswerHide Answer
Correct Answer: AB
The port number in the excerpt is 21, which is commonly associated with FTP (File Transfer Protocol). However, the specific tcpdump output snippet provided shows typical communication patterns for HTTP over port 80, which is usually used by web traffic. The traffic flags such as 'ack' and 'seq' followed by data (indicated by flags like '[P.]') are characteristic of HTTP traffic. The HTTP service utilizes TCP, and the flags in the communication indicate a session with data or web content transfer, typical in HTTP. Therefore, the correct network service or protocol illustrated in this tcpdump output is HTTP.
Discussion
3 commentsmilan92stankovicOption: A
Jan 16, 2021A - 100%
ccpmadOption: D
Jun 18, 2023D is DNS. Udemy course and chatgpt say
ccpmadOption: A
Jun 18, 2023Sorry, sorry i confused the question is a FTP, but similar question is DNS in: "The following is an excerpt from the output of tcpdump -nli eth1 'udp': 13:03:17.277327 IP 192.168.123.5.1065 > 192.168.5.112.53: 43653+ A? lpi.org. (25) 13:03:17.598624 IP 192.168.5.112.53 > 192.168.123.5.1065: 43653 1/0/0 A 198.51.100.42 (41) Which network service or protocol was used?"