Which statement is TRUE regarding network firewalls preventing Web Application attacks?
A . Network firewalls can prevent attacks because they can detect malicious HTTP traffic.
B . Network firewalls cannot prevent attacks because ports 80 and 443 must be opened.
C . Network firewalls can prevent attacks if they are properly configured.
D . Network firewalls cannot prevent attacks because they are too complex to configure.
Answer: B
Explanation:
Network layer firewalls, also called packet filters, operate at a relatively low level of the TCP/IP protocol stack, not allowing packets to pass through the firewall unless they match the established rule set. To prevent Web Application attacks an Application layer firewall would be required.
References: https://en.wikipedia.org/wiki/Firewall_(computing)#Network_layer_or_packet_filters
Leave a Reply