Tech QOTD: Mind your insecurities. (Security+)

2132

Tech question of the day (Security+): Examine the figure. What two insecure configurations can you identify? (Disregard any ALG implications…)

(see answer below and video response)

security1




Answer

First of all, you will note that the SPI firewall has been disabled. This is not usually recommended, and by default this is set to “enabled”. Second, the L2TP VPN option has been enabled. But the lack of IPSec can be a vulnerability to an L2TP VPN if it is not otherwise secured.

Video Solution:

Do you enjoy learning by watching? Then check out the CompTIA Security+ (SY0-401) Complete Video Course by fellow instructor Michael J Shannon.