If you run Snort in "inline mode" it is:

incapable of reviewing packet content

What happens when Snort rejects a packet?

It logs the packet and sends an "unreachable" message to the sender

It logs the packet but gives no user feedback

It sends a "443" error to the sender

It is possible to create custom actions in Snort?

Only if you use the open source version

Only if you use the open source version after v1.8

Based on the redalert example 183, this rule:

Creates a custom message and creates a suspicious.log file

deletes unauthorized user packets

redirects packets to the ALERT-LOG

rejects packets with LOG_AUTH in the content

Writing Snort Rules

Authored by Steven Hahn

Computers

10th - 12th Grade

Used 17+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

20 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

If you need to write a long rule in Snort, what symbol do you use?

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What are the two sections of a Snort rule?

header and options

host and client

internal and external

action and process

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

The rule options section is:

required

defined by switches

used to tighten rules and prevent false positives

mandatory for alerts

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Rule actions are implemented if:

any of the conditions are true

all of the conditions are true

at least half of the conditions are true

if two or more conditions are true

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Rule options are identified by:

()

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

In the example rule at the bottom of page 182, "content" and "msg" are

commands

rules

keywords

headers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

In the example rule on page 182, "alert" is:

action

keyword

header

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

15 questions

Programming

Quiz

•

10th Grade

15 questions

Cyber Security KS4

Quiz

•

8th - 12th Grade

15 questions

Linux-2 Quiz 2 -- LAMP

Quiz

•

1st - 12th Grade

15 questions

Empowerment Technologies

Quiz

•

KG - 12th Grade

15 questions

Excel

Quiz

•

10th - 12th Grade

20 questions

Clean, Sanitize and Store Kitchen Tools and Equipment

Quiz

•

11th - 12th Grade

20 questions

Advantages and Disadvantages of Collecting Data

Quiz

•

10th Grade

16 questions

AI Checkpoint 1 Revision

Quiz

•

9th - 12th Grade

Popular Resources on Wayground

16 questions

Grade 3 Simulation Assessment 2

Quiz

•

3rd Grade

19 questions

HCS Grade 5 Simulation Assessment_1 2526sy

Quiz

•

5th Grade

10 questions

Cinco de Mayo Trivia Questions

Interactive video

•

3rd - 5th Grade

17 questions

HCS Grade 4 Simulation Assessment_2 2526sy

Quiz

•

4th Grade

24 questions

HCS Grade 5 Simulation Assessment_2 2526sy

Quiz

•

5th Grade

13 questions

Cinco de mayo

Interactive video

•

6th - 8th Grade

20 questions

Math Review

Quiz

•

3rd Grade

30 questions

GVMS House Trivia 2026

Quiz

•

6th - 8th Grade

Discover more resources for Computers

27 questions

AP CSP Exam Review

Quiz

•

10th - 12th Grade

11 questions

Acids and Bases

Interactive video

•

9th - 12th Grade

Writing Snort Rules

If you need to write a long rule in Snort, what symbol do you use?

What are the two sections of a Snort rule?

The rule options section is:

Rule actions are implemented if:

Rule options are identified by:

In the example rule at the bottom of page 182, "content" and "msg" are

In the example rule on page 182, "alert" is:

If you run Snort in "inline mode" it is:

In order to force drop a suspicious packet, Snort would need to be configured:

What happens when Snort rejects a packet?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers