Systems Security Certified Practitioner (SSCP) — Question 32

Which of the following packets should NOT be dropped at a firewall protecting an organization's internal network?

Answer options

• A. Inbound packets with Source Routing option set
• B. Router information exchange protocols
• C. Inbound packets with an internal address as the source IP address
• D. Outbound packets with an external destination IP address

Correct answer: D

Explanation

The correct answer is D because outbound packets with an external destination IP address are legitimate traffic meant for external communication. Options A, B, and C should be dropped as they can pose security risks or are not valid for a secure internal network.